Nelson Bolyard wrote: > I propose that we add additional requirements to the policy for root CAs > that apply for inclusion in mozilla products. I propose that we require a > minimum key size for the root CA cert *AND* for any intermediate CA certs > issued by that root CA cert. Here's why.
I have just filed: https://bugzilla.mozilla.org/show_bug.cgi?id=380059 on this particular issue. I have also filed two other bugs on potential changes to the CA Cert Policy: https://bugzilla.mozilla.org/show_bug.cgi?id=380058 https://bugzilla.mozilla.org/show_bug.cgi?id=380057 Anyone with other suggestions should file similar bugs - product "mozilla.org", component "Governance", suggested title prefix "CA Cert Policy: ". I anticipate that we will consider all the suggestions as a group the next time we revise the policy, which will be once we've finished the current batch of inclusion requests. Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
