David E. Ross wrote: > Periodic audits of CAs are required by WebTrust to maintain their seal > of approval and should thus be required by Mozilla for continued > inclusion in the NSS store.
I don't know if it's in the policy explicitly, but it's always been my view that if a CA failed its WebTrust audit, its root would be removed. I once asked for an RSS feed or similar notifications from WebTrust of changes to the list of certified CAs (both additions and removals) but this has not yet happened. Perhaps someone needs to push them a bit harder on this. Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
