On Jan 23, 4:51 am, Michael Ströder <[EMAIL PROTECTED]> wrote:
> Nelson Bolyard wrote:
> > [EMAIL PROTECTED] wrote, On 2008-01-21 19:59:
>
> >> I need to know how to generate key pair and correspondingly prepare a
> >> CSR in PKCS#10 format using NSS.
>
> > Does the tag do what you want?
>
> Does
Nelson Bolyard wrote:
> [EMAIL PROTECTED] wrote, On 2008-01-21 19:59:
>
>> I need to know how to generate key pair and correspondingly prepare a
>> CSR in PKCS#10 format using NSS.
>
> Does the tag do what you want?
Does the tag trigger the generation of a PKCS#10 CSR today?
Last time I used
Eddy Nigg (StartCom Ltd.) wrote:
> Frank Hecker wrote:
>> To make this more concrete, I'll file a bug with a proposed policy
>> change to reflect this line of thinking.
> OK. Please send me the bug number for reference, thanks!
https://bugzilla.mozilla.org/show_bug.cgi?id=413545
A proposed revi
Frank Hecker wrote:
> As I wrote previously, I don't want to parse this too closely, but I
> think the situation may be as follows:
>
> * WebTrust EV audits completed by June 12, 2007 would have used the
> draft 11 guidelines.
>
> * WebTrust EV audits started before June 12, 2007 but completed af
Eddy Nigg (StartCom Ltd.) wrote:
> Robert Relyea wrote:
>> I would be OK with accepting validations started before June 12, 2007
>> based on Draft 11. Webtrust's chart indicates that their validations
>> switched to 1.0 immediately on it's approval by the CAB (including
>> mid-evaluation for tho
Robert Relyea wrote:
> Draft 11 was proposed as a standard in Oct 2006 in order to meet the
> deadline for inclusion in Vista. Mozilla abstained on that vote due to
> the closed nature of the spec (it was not publicly available at the
> time). Objections to the draft up to that point was mainly
Hi Bob,
Robert Relyea wrote:
>
>
> Draft 11 was proposed as a standard in Oct 2006 in order to meet the
> deadline for inclusion in Vista. Mozilla abstained on that vote due to
> the closed nature of the spec (it was not publicly available at the
> time). Objections to the draft up to that poin
Frank Hecker wrote:
Eddy Nigg (StartCom Ltd.) wrote:
Without offending, but does Johnathan has the right background for this?
I don't know, but if I remember right his specializations are in
different fields...
Johnathan and other Mozilla people, e.g., members of the NSS team, have
p
Frank Hecker wrote:
> Yes, as noted in the bug KISA/KCAC doesn't issue end entity certificates
> directly, but has subordinate CAs which do so. (As you note, this is a
> common setup in many countries.) That's why Gerv and I invested a fair
> amount of effort trying to determine what these subor
Eddy Nigg (StartCom Ltd.) wrote:
> Without offending, but does Johnathan has the right background for this?
> I don't know, but if I remember right his specializations are in
> different fields...
Johnathan and other Mozilla people, e.g., members of the NSS team, have
participated actively in C
Frank Hecker wrote:
In this case I am saying that if the draft EV guidelines and WebTrust
criteria are pretty much equivalent in terms of security impact, then we
should consider accepting the draft as well as final as acceptable, at
least on an interim basis. (For example, we could revise our
Eddy Nigg (StartCom Ltd.) wrote:
> Also many times there are some umbrella CAs setup to support those
> regulations and by including them, it will include automatically a bunch
> of other CAs as well. I believe KISA is such a CA...??
Yes, as noted in the bug KISA/KCAC doesn't issue end entity ce
Eddy Nigg (StartCom Ltd.) wrote:
> Frank Hecker wrote:
>> (Because after all our ultimate concern is users'
>> security, not guidelines and criteria per se.)
> Well, this is a dangerous statement, because CAs are all about policies
> and criterion, security is only part of the implementation of
A representative from KISA responded at the bug with comment 64
https://bugzilla.mozilla.org/show_bug.cgi?id=335197#c64
"Beside some criteria that corrupts with KISA's certificate policy
statement, Korea electronic signature act and etc, MIC audit criteria
WebTrust audit criteria is satisfied.
Hi Again
Frank Hecker wrote:
> First, we need to reach a consensus on what to do about CAs audited
> under the draft WebTrust EV criteria. AFAICT right now if we applied our
> policy strictly we wouldn't have any CAs that comply with it, and may
> not have any for some time to come (per my
Hi,
I'm just working on an NSS 3.12pre package.
The issue I find is sqlite3 what is called libsqlite3.so and would live
in /usr/lib if installed as system library.
That would clash with a system installed sqlite3.
The solution for newer distributions is to use a system sqlite as NSS
dependency
16 matches
Mail list logo
