Thanks, Jeff. These are useful comments, and I will take them into
consideration in revising our proposal.
On Tue, Jan 12, 2021 at 8:38 AM Jeff Ward via dev-security-policy <
dev-security-policy@lists.mozilla.org> wrote:
> On Sunday, January 3, 2021 at 8:38:05 AM UTC-6, Jeff Ward wrote:
> > On T
Hi Ben.
> *A CA technically capable of issuing server certificates MUST ensure that
> the CCADB field "Full CRL Issued By This CA" contains either the URL for
> the full and complete CRL or the URL for the JSON file containing all URLs
> for CRLs that when combined are the equivalent of the full a
Hi Ben,
A few follow-up questions and comments:
1) What are the expectations regarding availability for such CRLs? Do the
availability requirements in BR 4.10.2 stand for these CRLs even if such CRL
pointers are not encoded in end-entity certificates?
2) What is the expectation for populating th
3 matches
Mail list logo