Re: EV Policy OIDs (was Re: Identrust Commercial Root CA 1 EV Request)

Hi Nick, Good question. Mozilla is currently strongly encouraging CAs to use the CAB Forum EV OID, but not requiring it. I would be interested to hear arguments for or against requiring the use of the CAB Forum EV OID in future Mozilla root store updates. Requiring this might eventually solve

EV Policy OIDs (was Re: Identrust Commercial Root CA 1 EV Request)

On Tue, 18 Sep 2018 17:53:34 -0700 Wayne Thayer via dev-security-policy wrote: > ** EV Policy OID: 2.23.140.1.1 This reminds me of a question I keep meaning to ask. I know Microsoft has been trying to get CAs to use 2.23.140.1.1 for EV and knock it off with the arbitrary policy OIDs, does

Re: Google Trust Services Root Inclusion Request

On Mon, 17 Sep 2018 18:41:07 -0500 Jake Weisz via dev-security-policy wrote: > I guess under this logic, I withdraw my protest. As you say, Google > could simply start using these certificates, and Mozilla executives > would force you to accept them regardless of any policy violations in > order