1. The Mozilla Foundation should formally take over selection of CA certs to be included in Mozilla.
Another option might be to try and set something up with the Konqueror guys (or even with Apple and/or Opera). This would be a nominally separate organisation (which happens to be a handy arrangement in terms of reduced legal risk) and would help make determinations for all browsers.
This has advantages for both browser manufacturers (better backing and assessment) and CAs (wider distribution of certs for those who pass.)
Maybe this is too big an issue for now. But the policy should not prevent the establishment of such a body in the future.
Gerv _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
