Gervase Markham wrote: > Kyle Hamilton wrote: > >>As I recall, cacert.org was planning to be audited by one of the >>Mozilla guys directly. I don't know who, and I don't know when, but I >>kinda recall some discussion of this. > > I remember hearing someone say this, but when I asked, the name given > wasn't anyone I'd ever heard of. I forget who it was.
I believe it was Mr. David E. Ross http://www.rossde.com/ He used to be a regular in this newsgroup/alias, but the last time I saw a message from him was Feb 10 2004. :-( > And I don't know what Frank would say, but I'm not sure that a review > from a single unqualified individual could meet the "WebTrust or > equivalent" standard in the CA cert policy. In news://news.mozilla.org:119/[EMAIL PROTECTED] IanG wrote (quoting Frank): >> I should also note that the "third party" could in fact be myself or other >> volunteers participating in the Mozilla project, so I'm preserving that >> option as well; the only requirement is that the third party be independent >> from the CA itself. > > Luckily David Ross has posted his intention to do just that, > so we have a concrete case to examine. -- Nelson B _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
