Eddy Nigg (StartCom Ltd.) wrote: > Yes, I saw that under Certification Service Provider (CSP)...so if I > understand you correctly, the standards listed under this section were > the requirements used for the audit. In that case it's most likely that > they do have a document confirming that by KPMG (actually I'd be very > surprised if not)
I'll ask Melanie Raemy about this. > Yes, the later would be my concern (ETSI TS 101.456 as the relevant > criteria according to the Mozilla CA policy as opposed to "ZertES" as > the criteria). From our point of view it would be perfectly fine if the audit criteria encompassed both ETSI TS 101.456 and ZertES, as long as the requirements of ETSI TS 101.456 were satisfied. Frank -- Frank Hecker [EMAIL PROTECTED] _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
