Kathleen and I edited the proposed language (
https://github.com/BenWilson-Mozilla/pkipolicy/commit/a69aa03fb92d1b0c3f74fd560dffefdeed934b45)
to now read:
"The publicly-available documentation relating to each audit MUST contain
at least the following clearly-labelled information:
...
11. all
All,
Here is the currently proposed wording for subsection 5.1 of MRSP section
2.1:
" 5.1. for server certificates issued on or after October 1, 2021, verify
each dNSName or IPAddress in a SAN or commonName at an interval of 398 days
or less;"
Ben
On Fri, Feb 26, 2021 at 9:48 AM Ryan Sleevi
All,
Below are the summaries of the proposed resolutions of the issues slated to
be addressed by version 2.7.1 of the Mozilla Root Store Policy.
A full redline of the proposed changes can be seen here by clicking on the
"Files changed" tab:
All,
We are going to postpone the resolution of this Issue #218 and the addition
of language to address the "Full CRL" until MRSP version 2.8.
Thanks for your input thus far.
Ben
On Thu, Feb 25, 2021 at 10:59 AM Ben Wilson wrote:
> As placeholder in the Mozilla Root Store Policy, I'm proposing
Also, I neglected to mention it before, but this issue is also related to
Issue #173. While section 7.1 already states that CAs must provide
evidence of CA compliance from "creation," the Issue #173 proposal is that
section 7.1 be amended to say, "Before being included, CAs MUST provide
evidence
All,
Kathleen and I discussed the language of this proposal and have modified it
for MRSP section 3.2 as follows: "A Qualified Auditor MUST have relevant
IT Security experience, or have audited a number of CAs, and be independent.
Each Audit Report MUST be accompanied by documentation provided to
6 matches
Mail list logo