RE: Doppelganger/tripleganger intermediate certificates

AC Camerfirma is looking into this issue. regards Ramiro Muñoz Muñoz AC Camerfirma SA. CTO, Exploitation Manager, CISA. +34 619 746 291 · rami...@camerfirma.com. https://www.linkedin.com/in/ramirom. ¿ Has probado c-Office ? firma de documentos,

RE: AC Camerfirma Chambers of Commerce and Global Chambersign 2016 Root Inclusion Request

> 1 * The inclusion request references a much older CPS [3] that doesn't > list the 2016 versions of these roots or comply with current policies. > I only reviewed the newer CPS [5], but this CPS (section 1.2.1) > doesn't cover the older roots that are currently included. I believe > this is a

RE: AC Camerfirma's CP & CPS disclosure

Hi Wayne All problems have already been resolved from our side and we wait for the PIT audit planned for the next week. We will be able to provide the PIT before October 31th. Best regards Ramiro Muñoz Muñoz AC Camerfirma SA. CTO, Exploitation Manager, CISA. +34 619 746 291 ·

RE: Transfer of QuoVadis to DigiCert

Qualified Web Authentication Certificates (QWAC) under eIDAS European regulation. Ramiro Muñoz Muñoz CTO & Regulatory Standards. CISA. +34 619746291 rami...@camerfirma.com -Mensaje original- De: dev-security-policy [mailto:dev-security-policy-boun...@lists.mozilla.org] En nombre

Re: Summary of Camerfirma's Compliance Issues

Hi Ryan Camerfirma is working writing a complete answer to Ben comunicación. Ben has been informed from the first day. Hope we can send it in the next days. Regards Ramiro Obtener Outlook para Android De: dev-security-policy en

RE: Summary of Camerfirma's Compliance Issues

Hi Ben, Ryan and All. Sorry for the delay in answering this communication in this channel. Even though we have been in contact with Ben from the very moment we were notified, a prompt answer to the community is convenient as Ryan said. Camerfirma is working to deliver a detailed report to

Re: Summary of Camerfirma's Compliance Issues

Hi Ben, Ryan, Burton and all: Camerfirma will present its claims based on a description of the problems found by associating the references to the specific bugs. After making a complete analysis of the bugs as presented by Ben, always considering that bugs are the main source of truth, we see

RE: Summary of Camerfirma's Compliance Issues

to provide detailed answers. Also you said 'accurate answers' ? Were the answers you were going to post today inaccurate in some way? Burton On Tue, Dec 15, 2020 at 6:13 PM Ramiro Muñoz via dev-security-policy mailto:dev-security-policy@lists.mozilla.org>> wrote: Hi Ryan Thanks. We wil

RE: Summary of Camerfirma's Compliance Issues

Hi Ryan Thanks. We will take into account your observations. As I said we planed to send the formal answer today but the team has asked me for more time in order to give a more accurate answer. We plan to postpone to this Friday. KR Ramiro De: Ryan Sleevi Enviado el: lunes, 14 de diciembre

RE: Summary of Camerfirma's Compliance Issues

t look great to the community when a CA that is under investigation for serious compliance issues asks for more time to provide detailed answers. Also you said 'accurate answers' ? Were the answers you were going to post today inaccurate in some way? Burton On Tue, Dec 15, 2020 at 6:13 PM Ramiro Muñ

Re: Summary of Camerfirma's Compliance Issues

El miércoles, 23 de diciembre de 2020 a las 0:01:23 UTC+1, Wayne Thayer escribió: > On Sat, Dec 19, 2020 at 1:03 AM Ramiro Muñoz via dev-security-policy < > dev-secur...@lists.mozilla.org> wrote: > > > Hi Ben, Ryan, Burton and all: > > > > Camerfi

Re: Summary of Camerfirma's Compliance Issues

In response to Ryan’s latest post, we want to provide the community with Camerfirma’s due responses and we hope this clears up any doubts that might have arisen. Ryan argument number 1: “These statements are ones that are sort of "true by degree". That is, if I was to dispute 1, Camerfirma

Re: Summary of Camerfirma's Compliance Issues

El martes, 5 de enero de 2021 a las 16:45:11 UTC+1, Ryan Sleevi escribió: > On Tue, Jan 5, 2021 at 9:01 AM Ramiro Muñoz via dev-security-policy < > dev-secur...@lists.mozilla.org> wrote: > > > In response to Ryan’s latest post, we want to provide the community with

Re: Summary of Camerfirma's Compliance Issues

El martes, 19 de enero de 2021 a las 14:32:19 UTC+1, paul.leo@gmail.com escribió: > On Tuesday, January 19, 2021 at 11:01:15 AM UTC+1, Ramiro Muñoz wrote: > > > Finally, I’d like to ask you, based on which article of Mozilla Root Store > > Policy, you are sentencing a removal from the

Re: Summary of Camerfirma's Compliance Issues

El miércoles, 20 de enero de 2021 a las 2:07:31 UTC+1, Paul Kehrer escribió: > On Tue, Jan 19, 2021 at 6:37 PM Jonathan Rudenberg via > dev-security-policy wrote: > > > > On Tue, Jan 19, 2021, at 12:01, Andrew Ayer via dev-security-policy wrote: > > > Camerfirma was warned in 2018 that trust

Re: Summary of Camerfirma's Compliance Issues

El martes, 19 de enero de 2021 a las 18:01:49 UTC+1, Andrew Ayer escribió: > On Sun, 17 Jan 2021 00:51:29 -0800 (PST) > Ramiro Mu__oz via dev-security-policy > wrote: > > > Some certificates may have been syntactically > > incorrect due to misinterpretation, but we have never compromised any

Re: Summary of Camerfirma's Compliance Issues

El viernes, 22 de enero de 2021 a las 2:31:00 UTC+1, Filippo Valsorda escribió: > 2021-01-19 18:01 GMT+01:00 Andrew Ayer via dev-security-policy > : > > It's troubling that even at this stage, Camerfirma still doesn't seem > > to grasp the seriousness of their compliance problems. Today, > >

Re: Summary of Camerfirma's Compliance Issues

El miércoles, 20 de enero de 2021 a las 5:04:27 UTC+1, Matt Palmer escribió: > On Tue, Jan 19, 2021 at 07:28:17AM -0800, Ramiro Muñoz via > dev-security-policy wrote: > > Camerfirma is not the member with the highest number of > > incidents nor the member with th

Re: Summary of Camerfirma's Compliance Issues

El domingo, 10 de enero de 2021 a las 17:27:01 UTC+1, Ryan Sleevi escribió: > On Sat, Jan 9, 2021 at 1:44 PM Ramiro Muñoz via dev-security-policy < > dev-secur...@lists.mozilla.org> wrote: > > > > That Camerfirma does not understand or express appreci

Re: Summary of Camerfirma's Compliance Issues

El martes, 19 de enero de 2021 a las 0:49:42 UTC+1, Matt Palmer escribió: > On Sun, Jan 17, 2021 at 12:51:29AM -0800, Ramiro Muñoz via > dev-security-policy wrote: > > We don’t ask the community to disregard the data, on the contrary we ask > > the community to analyze t

Re: Summary of Camerfirma's Compliance Issues

El martes, 19 de enero de 2021 a las 0:49:42 UTC+1, Matt Palmer escribió: > On Sun, Jan 17, 2021 at 12:51:29AM -0800, Ramiro Muñoz via > dev-security-policy wrote: > > We don’t ask the community to disregard the data, on the contrary we ask > > the community to analyze t

Re: Summary of Camerfirma's Compliance Issues

El lunes, 25 de enero de 2021 a las 13:31:18 UTC+1, Matthias van de Meent escribió: > On Sun, 24 Jan 2021 at 20:58, Ramiro Muñoz via dev-security-policy > wrote: > > > > Thanks everyone for your valuable contribution to the discussion. We’ve > > prepared a thr

Re: Summary of Camerfirma's Compliance Issues

El jueves, 3 de diciembre de 2020 a las 19:01:55 UTC+1, Ben Wilson escribió: > All, > > We have prepared an issues list as a summary of Camerfirma's compliance > issues over the past several years. The purpose of the list is to collect > and document all issues and responses in one place so