Eddy Nigg (StartCom Ltd.):
> KISA is a CA authorized and commissioned by the their government,
> however the operating CAs are not government CAs, but regular CAs with
> commercial interests etc. So this makes it a bit tricky I think...
I forgot to add, that there is a difference between a CA co
Frank Hecker:
> Eddy Nigg (StartCom Ltd.) wrote:
>
>> I think the question raised with that CA was also, if the audit covers
>> the whole CA infrastructure, i.e. all different independent CAs
>> operating under the KISA root. If I remember right, the CPS has no
>> provision in that respect an
Eddy Nigg (StartCom Ltd.) wrote:
> I think the question raised with that CA was also, if the audit covers
> the whole CA infrastructure, i.e. all different independent CAs
> operating under the KISA root. If I remember right, the CPS has no
> provision in that respect and the audit covers only K
As I implied in my previous message about the KISA request for inclusion
of its roots, government CAs can pose special problems in the context of
our current Mozilla CA policy, and I wanted to take the opportunity to
discuss the topic briefly, since we may want to consider future changes
to our
Frank Hecker:
> Frank Hecker wrote:
>
>> Korea Certification Authority Central (KCAC) of the Korean Information
>> Security Administration (KISA) has applied to add three root CA
>> certificates to the Mozilla root store, as documented in the following bug:
>>
>> https://bugzilla.mozilla.org
Frank Hecker wrote:
> Korea Certification Authority Central (KCAC) of the Korean Information
> Security Administration (KISA) has applied to add three root CA
> certificates to the Mozilla root store, as documented in the following bug:
>
> https://bugzilla.mozilla.org/show_bug.cgi?id=335197
Robin Alden:
> [Robin said...]
> If I understand you correctly you are saying that considering lack of
> evidence to the contrary you believe that Comodo is solely responsible for
> lowering the standard of DV certificate issuance in these two respects?
>
> You are probably more familiar with our
Eddy,
> > [Robin said...]
> > Our main current objection to them is on grounds of maintaining a level
> > commercial playing field among all CAs (in the Mozilla root program).
> >
> Robin, just for your knowledge that most if not all CAs which have roots
> in NSS, are commercial CAs. Most, if not a
8 matches
Mail list logo
