Eddy Nigg (StartCom Ltd.) wrote: > It seems to me that Mozilla needs a decent tool in order to manage CAs, > their inclusion, approval, removal processes. <snip> > I might make suggestions (on how this tool should look) and even offer > to provide such a tool (with everything what it entails, including > access right, adequate security features etc), should Mozilla want and > request it from me.
I'd be interested in your thoughts about what such a tool should do. We've been evolving over the years in terms of what and how much information we keep about CAs, and certainly the system we have now is far from perfect. Note that one key interest of mine is finding ways for more people to contribute information about CAs without having to have one person (e.g., me) do all the work in publishing that information. We'd previously discussed keeping CA-related information on the wiki.mozilla.org site, but Nelson and other had (IMO legitimate) concerns about having things like certificates and SHA-1 fingerprints be on a site that anyone could easily modify. Frank -- Frank Hecker [EMAIL PROTECTED] _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
