Re: Visa Issues

2018-09-28 Thread Wayne Thayer via dev-security-policy
On Fri, Sep 28, 2018 at 12:29 PM Eric Mill wrote: > > > On Thu, Sep 27, 2018 at 5:22 PM Wayne Thayer via dev-security-policy < > dev-security-policy@lists.mozilla.org> wrote: > >> Visa has filed a bug [1] requesting removal of the eCommerce root from the >> Mozilla root store. Visa has also

Re: Visa Issues

2018-09-28 Thread Eric Mill via dev-security-policy
On Thu, Sep 27, 2018 at 5:22 PM Wayne Thayer via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > Visa has filed a bug [1] requesting removal of the eCommerce root from the > Mozilla root store. Visa has also responded to the information requested in > the qualified audits

Re: Visa Issues

2018-09-27 Thread Wayne Thayer via dev-security-policy
Visa has filed a bug [1] requesting removal of the eCommerce root from the Mozilla root store. Visa has also responded to the information requested in the qualified audits bug [2], but it's unclear if or when they will respond to the issues list presented in this thread. Two weeks have passed

Re: Visa Issues

2018-09-23 Thread Ryan Sleevi via dev-security-policy
On Thu, Sep 13, 2018 at 3:26 PM Wayne Thayer via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > Visa recently delivered new qualified audit reports for their eCommerce > Root that is included in the Mozilla program. I opened a bug [1] and > requested an incident report from

Re: Visa Issues

2018-09-15 Thread Nick Lamb via dev-security-policy
On Thu, 13 Sep 2018 12:26:55 -0700 Wayne Thayer via dev-security-policy wrote: > https://wiki.mozilla.org/CA:Visa_Issues Thanks for this list Wayne, you do a valuable task in assembling lists like this for us to ponder. > I would like to request that a representative from Visa engage in this >

Re: Visa Issues

2018-09-13 Thread Wayne Thayer via dev-security-policy
Good point Ryan. I've changed PITRA to "point-in-time audit" on this wiki page. There is also an open issue to fix the references to PITRAs in the Root Store Policy: https://github.com/mozilla/pkipolicy/issues/151 On Thu, Sep 13, 2018 at 1:28 PM Ryan Sleevi wrote: > > > On Thu, Sep 13, 2018 at

Visa Issues

2018-09-13 Thread Wayne Thayer via dev-security-policy
Visa recently delivered new qualified audit reports for their eCommerce Root that is included in the Mozilla program. I opened a bug [1] and requested an incident report from Visa. Visa was also the subject of a thread [2] earlier this year in which I stated that I would look into some of the