Re: How do I find a certificate using SubjectPublicKeyInfo data?

2008-03-27 Thread Subrata Mazumdar
Nelson, thanks for your suggestion. I am not very much familiar with low-level PK11 API. Which public functions should I use to get CKA_ID and find the cert using CKA_ID? I would appreciate if direct me some example code or if could give an pseudo-code using relevant methods. Thanks. -- Subrat

Re: Comodo request for EV-enabling 3 existing roots

2008-03-27 Thread Frank Hecker
Robin Alden wrote: > Is there anything remaining which would now hold up approval of our CA > requests? I have to go through all this and write up my final statement on the issues at hand. I think all issues have been responded to one way or another. Frank __

Re: Comodo request for EV-enabling 3 existing roots

2008-03-27 Thread Eddy Nigg (StartCom Ltd.)
Robin Alden: > [Robin said...] > Our main current objection to them is on grounds of maintaining a level > commercial playing field among all CAs (in the Mozilla root program). > Robin, just for your knowledge that most if not all CAs which have roots in NSS, are commercial CAs. Most, if not a

Re: How do I find a certificate using SubjectPublicKeyInfo data?

2008-03-27 Thread Nelson Bolyard
Robert Relyea wrote, On 2008-03-26 18:13: > Subrata Mazumdar wrote: >> Hi, >> is there any way I can find the certificate associated with a public key >> using >> the SubjectPublicKeyInfo (CERTSubjectPublicKeyInfo)? >> >> I am looking for public API and not too low level. >> I looked in the .../ns

RE: Comodo request for EV-enabling 3 existing roots

2008-03-27 Thread Robin Alden
> In terms of getting "concessions" from individual CAs: In the past we > have held up approval of CA requests until we could be satisfied that > CAs were in compliance with specifically-called-out requirements of our > policy. For example, in a number of cases it wasn't clear at all from a > CA's

Re: Comodo request for EV-enabling 3 existing roots

2008-03-27 Thread Frank Hecker
Robin Alden wrote: > Perhaps my problem then is understanding the process at all. You seem to > suggest that once our application for EV status is approved we somehow > become immune to changes in your CA policy. Why do you feel that Mozilla > has no control over the CAs other than at the point o

Re: Comodo request for EV-enabling 3 existing roots

2008-03-27 Thread Eddy Nigg (StartCom Ltd.)
Hi Robin, Robin Alden: > > [Robin said...] > Perhaps my problem then is understanding the process at all. You seem to > suggest that once our application for EV status is approved we somehow > become immune to changes in your CA policy. Why do you feel that Mozilla > has no control over the CAs