David E. Ross wrote: > I believe that trust should require public disclosure.
Citizens of France have no choice but to "trust" their government, to a certain extent. In that the government can exercise jurisdiction over them. Is the proposed certificate arrangement not just a reflection of reality? > If appropriate, we could have another list of certificates added to the > "Included" and "Pending" lists: "Not Approved" with only those root > certificates that Mozilla was formally requested to install but were > denied approval. The reason for disapproval would be indicated. Links > to the CA and for downloading certificates could be included, with > warnings that the users install such certificates at their own risk. We could do this; but why is Not Approved different from Didn't Apply? Is CACert Not Approved, or didn't they get far enough into the process? Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
