Hi Mert Özarar, Mert Özarar (TÜRKTRUST) wrote: > Our English website (beta version) is ready and have been uploaded > under domain. http://www.turktrust.com.tr/e/ is the current URL... Very nice, congratulations on that!
> "http://www.turktrust.com.tr/e/en51.jsp"; gives the current trust > hierarchies, roots and subroots. I have mentioned why we have two > roots (former is not currently used) in the Bugzilla discussion page. > As you can notice, "Trial certificates" have a different trust > hierarchy, different root and no subroot(s). You can investigate the > details from the root of trial certificates. I tried to found out more about the trial and other certificates at your site (now that it's in English), however couldn't make the distinction between any of them...perhaps you can guide me? > Besides, some other CAs > (some of them exist in the IMO trusted CA store) issue same kind of > certificates in the name of [trial/free/demo] certificates. Well, the discussion is about your CA which is currently considered to be included in NSS! Any shortcoming by another CA can be discussed in an unrelated thread on this mailing list. If you know about CAs which issue unvalidated certificates and its root is currently in NSS please post it here. > The key > point here is that there is no living connection between them and the > target roots that we want to be recognized by IMO. They are not > subject to any law including Turkish Digital Signature Law. They are > free, dummy, intuitive and "trial" ceritificates just for promotion > and advertisement. > Right, however your CPS doesn't make a distinction between different roots! > We have skimmed similar CP's and CPS's of some elite CAs > around the world and even some of them have not mentioned trial > certificates in details. It doesn't makes it OK. Maybe the CA you refer to has a separate CP/CPS which regulate such certificates? But again, the only relevant authority what Mozilla concerns is the Mozilla CA policy which must be satisfied. > I understand the doubts on Latin character sets but it is a global > problem, of course. Absolutely and as I mentioned, the discussion about this issues doesn't affect your application directly since the Mozilla CA policy doesn't have any requirements in that respect. Sorry that this was so extensively discussed in this thread. > > Please remark the URLs as well: > http://www.turktrust.com.tr/e/en52.jsp (Official document declared by > TTA) This is the same statement from June 2005 which is already at the bug report. -- Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
