On 11/10/13 00:03, Kathleen Wilson wrote:
All,
I'm going to be making the following changes to
http://www.mozilla.org/projects/security/certs/included/
1) Add "SHA1 Fingerprint" column
2) Convert the three trust bit columns into one column like pending list
(http://www.mozilla.org/projects/security/certs/pending/)
3) In the "EV Enabled" column change each “Yes” to the correspond EV
Policy OID
Please respond asap if you foresee any issues with these changes.
Also, note that there will be some transition time as I'm working
through these changes.
Hi Kathleen. The attached zipped .csv file implements those changes. I
hope this is useful and saves you some effort!
I have a project (Comodo-internal only, I'm afraid) that keeps track of
which Roots are in which Root Programs, plus associated Root Program
metadata. I'd already parsed and imported the latest versions of your
spreadsheet, the Root Certificates and Trust Bits (from
mozilla-central's certdata.txt) and the EV OIDs (from mozilla-central's
nsIdentityChecking.cpp), so all I had to do was write 1 database query
to generate this .csv file.
I generated the O, OU, CN, From, To, Modulus and Signature Hash
Algorithm columns by parsing the Root Certificates directly, rather than
by using the values in your spreadsheet. This corrected a few
inconsistencies in your spreadsheet.
Likewise, I generated the Trust Bit and EV OID columns by parsing
certdata.txt and nsIdentityChecking.cpp directly. (No inconsistencies
found).
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
