Acquisition policy (was: Francisco Partners acquires Comodo certificate authority business)

Hello Peter, But what prevents Francisco Partners making security nightmare after the probationary period? This is logical, I think. Regards, Andrew ___ dev-security-policy mailing list dev-security-policy@lists.mozilla.org

Re: DigiCert ROCA fingerprint incident report

I see all 7 of the certs identified in this thread in crt.sh: Serial number: 4a907fbfc90eb043c50c9c8ace6305a1 SAN->dNSName: [www.]asik-portal.com https://crt.sh/?id=13734110 Serial number: 8008c178d0d4cd3d79acc09f6ac132c SAN->dNSName: *.Thameswater.co.uk https://crt.sh/?id=249452540 Serial

Re: Third party use of OneCRL

Hi Gerv, thanks a lot! Currently we don't know yet if the download would be centralized or per host as we are just figuring out the concept. I totally see that large numbers of requests would be something we need to talk about with you first. Have a nice day Niklas 2017-11-08 9:13 GMT+01:00

Re: Third party use of OneCRL

On 07/11/17 14:08, niklas.bachma...@googlemail.com wrote: > I'm working for a big managed security provider. We would like to > benefit from OneCRL as a means of improving our certificate > revocation checking. As in, you'd like to download one copy per day, or you'd like 100,000 clients to