Re: New requirement: certlint testing

2016-02-09 Thread Erwann Abalea
Le lundi 8 février 2016 21:43:19 UTC+1, Kathleen Wilson a écrit : > On 2/8/16 12:22 PM, Kathleen Wilson wrote: > > On 2/8/16 12:18 PM, Kathleen Wilson wrote: > >> All, > >> > >> We recently added two tests that CAs must perform and resolve errors for > >> when they are requesting to enable the

RE: New requirement: certlint testing

2016-02-09 Thread Medin, Steven
How does the diffusion of early toBeSigned entropy create value for an event performed once?  -Original Message- From: dev-security-policy [mailto:dev-security-policy-bounces+steve.medin=verizonbusiness@lists.mo zilla.org] On Behalf Of Kurt Roeckx Sent: Monday, February 08, 2016 4:32

Re: A-Trust Root Renewal Request

2016-02-09 Thread Erwann Abalea
Bonjour, Le mardi 9 février 2016 10:47:16 UTC+1, Jesus F a écrit : > Dear all, > > As A-Trust request EV treatment, I checked the EV issued certificates from > a-sign-SSL-EV-05 subordinate in ctr.sh > (https://crt.sh/?Identity=%25=6096) > > ALL of them states in businessCategory the

Re: A-Trust Root Renewal Request

2016-02-09 Thread Jesus F
Thanks Mr Erwann Abalea to bring this to our (my) attention. As the A-trust EV audit report do not include any CA in scope and only states "for its Certification Authority (CA) operations at Vienna"... Should we consider this audit includes all roots and subordinates? I can not find any EV

Re: New requirement: certlint testing

2016-02-09 Thread Peter Bowen
On Tue, Feb 9, 2016 at 6:55 AM, Erwann Abalea wrote: > Le lundi 8 février 2016 21:43:19 UTC+1, Kathleen Wilson a écrit : >> On 2/8/16 12:22 PM, Kathleen Wilson wrote: >> >> One topic currently under discussion in Bug #1201423 is regarding root >> certificates with serial number

Re: DocuSign (OpenTrust/Keynectis/Certplus) root renewal request

2016-02-09 Thread David E. Ross
On 2/9/2016 12:07 PM, Kathleen Wilson wrote: [snipped] > * Audit: Annual audits are performed by LSTI according to the ETSI TS > 102 042 criteria. > http://www.lsti-certification.fr/images/liste_entreprise/Liste%20PSCe.pdf >

Re: A-Trust Root Renewal Request

2016-02-09 Thread Jakob Bohm
On 09/02/2016 19:08, Matt Palmer wrote: On Tue, Feb 09, 2016 at 04:24:22AM -0800, Erwann Abalea wrote: Bonjour, Le mardi 9 février 2016 10:47:16 UTC+1, Jesus F a écrit : Dear all, As A-Trust request EV treatment, I checked the EV issued certificates from a-sign-SSL-EV-05 subordinate in

Re: DocuSign (OpenTrust/Keynectis/Certplus) root renewal request

2016-02-09 Thread Charles Reiss
On 02/09/16 20:07, Kathleen Wilson wrote: > This request by DocuSign (OpenTrust/Keynectis/Certplus) is to include > the following root certificates, turn on the Websites and Email trust > bits for all of them, and enable EV treatment for all of them. These new > certs will eventually replace the