C.J. Adams-Collier wrote: > Hey there Frank, Eddy, auditors of all colors, > > I personally feel uncomfortable with the approval of this application > prior to resolution of the section 7 violation Eddy and Gerv have > noted. Also, the CPS is a .doc file... could we get a file format > that can be reviewed by the public, please? HTML or plain text would > be much more appealing. > > https://bugzilla.mozilla.org/show_bug.cgi?id=380635#c29 > > One resolution for this issue (as I understand it) might would be for > the requesting entity to create a sibling CA that is not shipped in > the mozilla CA root. The sibling CA could then be used for these > "test" certificates without triggering a section 7 violation. This > type of approach is touched on in section 13. > > I am concerned, however, that TÜRKTRUST would even consider using a > production CA to issue "test" certificates. Using an intermediate CA wouldn't solve this problem (as you call it, sibling?), but an unrelated CA root would.
The CPS provided by this CA as in attachment https://bugzilla.mozilla.org/attachment.cgi?id=286696 is in PDF format I think.... -- Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
