The basic situation right now is that we are requiring that CAs have successfully completed a WebTrust for CAs audit, or something equivalent to it. Unless RegioGeld has undergone such an audit (and I suspect it hasn't) then I can't approve including a RegioGeld CA cert in Mozilla, Firefox, etc.
My apologies, I was being a bit presumptuous here. First, since I can't read German and didn't take the time to get a translation of the RegioGeld site, I have no idea of what sort of audits the RegioGeld CA has undergone. Second, I should have said that in the absence of a third-party audit I can't approve including RegioGeld *at this time*. I'm trying to work toward a policy that would allow us to include CAs based on our own evaluation of them, but we are not yet ready to do this yet.
Frank
-- Frank Hecker [EMAIL PROTECTED] _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
