All,
I think we should have a discussion about the level of involvement
required of a CA to go through the root inclusion process.
How much of the process can a CA pay someone else to do?
What should the CA do on their own to demonstrate their own commitment
to running a trust anchor?
I am asking these questions because of comments 16 through 21 of
https://bugzilla.mozilla.org/show_bug.cgi?id=844163
I will appreciate your thoughtful and constructive input on this topic.
Kathleen
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
