On 12/17/2008 01:29 AM, Eddy Nigg:
On 12/17/2008 01:26 AM, Frank Hecker:
That's a good idea, I'll do that. I'd like to get a definitive answer on
this question, since I know I've seen this practice with other CAs,
including I think at least one not in Germany.
Frank, I asked about it at the bug already earlier. Once I get the
information I'll be glad to provide information about it, including
translation about the important parts (if this suits us).
I've received answers from the representative of S-Trust at the bug. As
suspect right from the beginning, there is no such law or requirement as
claimed initially that justifies the issuing of new roots every year for
a life-time of only five years. For further reference see bug 370627
from comment 47 onwards:
https://bugzilla.mozilla.org/show_bug.cgi?id=370627#c47
According to comments made by Nelson and others, I suggest to refrain
from including this CA at this time. Their model is hardly sustainable,
unnecessary complicated for no apparent benefit. Some of the documents I
reviewed from the "Bundesnetzagentur" even explicitly discourages their
implementation.
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
