On 10/09/2013 11:05 AM, From Rob Stradling:
The BRs are minimum requirements, not maximum requirements.
Therefore, I see no discrepancy.
Should we allow 1024-bit roots to continue to be enabled for SSL, as
long as the certs issued in their hierarchy are in compliance with
the BRs?
No.
I think it's time to update the BRs!
+1
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
XMPP: [email protected]
Blog: http://blog.startcom.org/
Twitter: http://twitter.com/eddy_nigg
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
