Michael Ströder wrote: > Well, I think if the CA clearly states in its CP/CPS that the users > (subscribers and relying participants) of the issued certificates SHALL > be solely "local" users it does not matter whether Mozilla is a product > used globally. But for most CAs issuing SSL/TLS certs this assertion can > simply not be made. > => The cert's content MUST be readable to the international public. > Even more than that, can anybody prevent a subscriber targeting the international audience, *even* if the CAs intentions were meant for "local use" (a term which hardly exists on the Internet - as opposed to Intranet). Can NSS or other components limit certificates to a certain region, language or characters set? Guess not and it isn't meant to be that way anyway...
Therefore the Mozilla CA policy should be defined in that global, international world-wide context. Additionally (this is for Gerv), section 6 already states today: "provide some service relevant to *typical users* of our software products". CAs which operate in a very limited scope, issues certificates which the majority (the typical user) can't read and hence the potential relying parties are a group limited to a certain region/language, *do not comply* to this basic condition. Defining aspects such as the issue I brought up is a natural extension of this which in my opinion requires definition. And lets face it, English is the de-facto international language used almost anywhere, including the Internet. US-ASCII is the most widely used standard too. And I'm not even speaking natively English, nor does Michael I think.... ;-) -- Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
