I have update the bug [1] and recommended approval of this emSign root
inclusion request.
- Wayne
[1] https://bugzilla.mozilla.org/show_bug.cgi?id=1442337
On Tue, Nov 27, 2018 at 10:19 AM Wayne Thayer wrote:
> I've reviewed the updated CPS and these period-of-time audit statements -
> I have
Hi,
Happy to inform the availibility of Period of Time Audit reports. The audit
reports are dated 08-Oct-2018, and the corresponding Webtrust seals are
available at https://repository.emsign.com
Links to individual audit reports.
WebTrust CA:
There is an update made to emSign CP/CPS and latest version 1.05 is published.
The change covers more clarity on email verification methods. It also covers
couple of structural updates to CP/CPS in line with RFC 3647. (Change History
is part of the document, at the end.)
URL for latest CPS:
On Friday, October 12, 2018 at 4:07:11 AM UTC+8, Wayne Thayer wrote:
> This request is for inclusion of these four emSign roots operated by
> eMudhra in bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1442337
>
> * BR Self Assessment is here:
>
On Friday, October 12, 2018 at 6:47:12 AM UTC+8, Samuel Pinder wrote:
> Visiting the www.emsign.com homepage brings up a list of proposed products.
> Currently, in the "Types of Certificate" table halfway down the page is the
> following:
> Wildcard SSL - OV
> Wildcard SSL - EV
> UCC Wildcard
On Friday, October 12, 2018 at 6:33:53 AM UTC+8, Matt Palmer wrote:
> On Thu, Oct 11, 2018 at 02:36:18PM -0700, Wayne Thayer via
> dev-security-policy wrote:
> > Nick - I expect an emSign representative to respond to all of your
> > questions, but their information request indicates that they
On Friday, October 12, 2018 at 5:07:55 AM UTC+8, Nick Lamb wrote:
> On Thu, 11 Oct 2018 13:06:46 -0700
> Wayne Thayer via dev-security-policy
> wrote:
>
> > This request is for inclusion of these four emSign roots operated by
> > eMudhra in bug:
On Friday, October 12, 2018 at 6:19:52 AM UTC+8, Matt Palmer wrote:
> On Thu, Oct 11, 2018 at 01:06:46PM -0700, Wayne Thayer via
> dev-security-policy wrote:
> > * The CPS allows “external issuing CAs” but does not clearly state that the
> > requirements of BR section 1.3.2 will be met. emSign
Visiting the www.emsign.com homepage brings up a list of proposed products.
Currently, in the "Types of Certificate" table halfway down the page is the
following:
Wildcard SSL - OV
Wildcard SSL - EV
UCC Wildcard SSL - DV
UCC Wildcard SSL - OV
UCC Wildcard SSL - EV
That's not a good sign at
On Thu, Oct 11, 2018 at 02:36:18PM -0700, Wayne Thayer via dev-security-policy
wrote:
> Nick - I expect an emSign representative to respond to all of your
> questions, but their information request indicates that they have been
> operating the Indian Government Root for more than 10 years and
On Thu, Oct 11, 2018 at 01:06:46PM -0700, Wayne Thayer via dev-security-policy
wrote:
> * The CPS allows “external issuing CAs” but does not clearly state that the
> requirements of BR section 1.3.2 will be met. emSign made the following
> comment in response to this concern: “In the CP/CPS,
Nick - I expect an emSign representative to respond to all of your
questions, but their information request indicates that they have been
operating the Indian Government Root for more than 10 years and have issued
over 35 million certificates:
On Thu, 11 Oct 2018 13:06:46 -0700
Wayne Thayer via dev-security-policy
wrote:
> This request is for inclusion of these four emSign roots operated by
> eMudhra in bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1442337
I would like to read more about eMudhra / emSign.
I have never heard of
This request is for inclusion of these four emSign roots operated by
eMudhra in bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1442337
* BR Self Assessment is here:
https://bug1442337.bmoattachments.org/attachment.cgi?id=8955225
* Summary of Information Gathered and Verified:
14 matches
Mail list logo
