On 07/08/14 23:17, fhw...@gmail.com wrote: > Curious to know the process by which cert holders will get their > certs‎ added to these lists. How much of that flow and the necessary > security measures have been worked out?
Cert holders get their certs added to CRLs maintained by their CA. Cert holders won't be communicating with Mozilla directly. Even in the case of high-profile misissuance, we normally work with the CA rather than the cert holder. If you are asking "how do CAs get their CRLs on the list", the answer is that they submit them to us via a to-be-designed process. We have contacts with the CAs, and there are a manageable number of them. Gerv -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto