Comment #22 on issue 4150 by [email protected]: Security: SwissSign Root marked for EV http://code.google.com/p/chromium/issues/detail?id=4150
I meant that the patch chrome-ev.patch turns off the *certificate policy* checking of the EV subordinate CA certificates. EV certificate chains should be held to a higher standard. The certificate chain of https://testevg2.swisssign.net/ contains conflicting certificatePolicies extensions, so it fails even the regular certificate policy checking. Unless the CA/Browser Forum says we should ignore the conflicting certificatePolicies extensions of the root and the end entity certificates, we can't show the EV status for that certificate chain I'd be interested in finding out if Internet Explorer or Firefox will show the EV status for https://testevg2.swisssign.net/. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
