Re: Policy: revoke on private key exposure

Eddy Nigg Wed, 11 Feb 2009 12:25:15 -0800

On 02/11/2009 06:33 PM, Ian G:

Whether or not the average CPS/CP has it is irrelevant. Let's look at
the standards that all CAs are supposed to be using, in this case RFC
5280:



Where in the policy does it mention RFC 5280?


I guess Mozilla strives to follow standards.

The CA is not following the PKIX standard: pull their trust anchor.



pull the policy?


Pull Ian G? :-)


--
Regards

Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog:   https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto

Re: Policy: revoke on private key exposure

Reply via email to