Eddy Nigg wrote:
Concerning the disruption, Comodo has many roots and the resetting of this specific root would affect low-assurance sites as far as I know.
I don't think that's necessarily true. I don't think it would affect EV sites (because of the way validation for those sites is special-cased), but it could affect non-EV sites under other Comodo brands (I mean, other than the PositiveSSL brand) and it could also affect other CAs whose CA certs are cross-signed by the UTN-UserFirst-Hardware root.
Frank -- Frank Hecker hec...@mozillafoundation.org _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
