Frank Hecker wrote, On 2008-01-28 05:08: > Eddy Nigg (StartCom Ltd.) wrote: >> Except of the Mozilla CA policy suggesting to use intermediate CA >> certificates or different roots according to different policies , >> doesn't EV *require* the usage of intermediate CAs (no direct issuance)? >> Does anybody know from memory about this? Else I'll look it up... > > I looked it up just now.
Thanks, Frank. > Regarding the Mozilla CA policy, the language in the policy (section 13) > is a recommendation only, because we couldn't reach consensus on making > it mandatory. Also, recall that the purpose of the recommendation was > "so that we or others may selectively enable or disable acceptance of > certificates issued according to a particular policy, or may otherwise > treat such certificates differently (e.g., in our products' user > interfaces)." Does it follow from that recommendation that Mozilla browsers should provide a user-configurable preference to enable/disable the EV UI entirely? Should users have the option to disable "Larry"? Has anyone expressed desire to do so? _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
