Nelson Bolyard wrote: > The CA/Browser Forum (a.k.a. CABForum), the same people who devised EV > certificates for SSL/TLS servers, are now working on defining EV for > code signing. They're really working on defining code signing, what it > means, how it works, etc. They're addressing such fundamental issues > as whether signatures on code should be valid in perpetuity (as NSS now > interprets them) or whether the signatures' validity should expire along > with the signer's certificate, and other similar issues. They have some > ideas about refreshed signatures, etc.... In general I believe Mozilla should be involved at the CABForum as much as possible because if you don't influence the others decide for you. Nobody to blame afterwards...and coming close to the vote with a huge list of objections isn't nice either...
Is there a policy about who represents Mozilla and why nobody is involved currently? I suspect Gerv did that in the past but can't right now? Aren't you Nelson eligible to participate at the CABForum? -- Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
