On 11/24/2007 11:52 PM, C.J. Adams-Collier wrote [in part]: > > 2a) I recommend that we advise applicants to review rfc2527
RFC 2527 has been obsoleted by RFC 3647. The policy should also make clear that third-party certifications or attestations must be available from that third party. While such documents might be provided by the CA for information, it is necessary that they be authenticated by being sent (hardcopy) directly by the signator or viewed on the signator's Web site. In particular, secret or confidential audits should not be acceptable. -- David E. Ross <http://www.rossde.com/> Go to Mozdev at <http://www.mozdev.org/> for quick access to extensions for Firefox, Thunderbird, SeaMonkey, and other Mozilla-related applications. You can access Mozdev much more quickly than you can Mozilla Add-Ons. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
