On Wed, Dec 11, 2013 at 1:49 AM, Samuel L <samuel.la...@sealweb.eu> wrote: > Le 11/12/13 01:08, Kathleen Wilson a écrit : >> Based on the list that Rob provided, there may be other domains that we >> might consider including. >> For example: >> *.ac-martinique.fr >> *.ac-creteil.fr >> *.ac-orleans-tours.fr >> *.education.fr >> *.ac-poitiers.fr
[snip] > According to this page (from the french national education administration, > which is one of the biggest, if not the biggest administrative body in > France), there are actually 30 academies (regional bodies of the ministry of > education), whose domains are : <snip> Thanks for the very helpful information. I think we should first ask ANSSI to help those academies migrate to a different CA. My understanding is that the French government already has used certificates from other CAs: Entrust: https://www.amendes.gouv.fr/portail/index.jsp?lang=en Certplus/Certinomis: https://www.tresor.economie.gouv.fr/autorisations-prealables-des-investissements-etrangers-en-france So, it seems reasonable to think we could work with ANSSI to coordinate the migration of websites that aren't serving critical government functions to the other CAs that the French government is already using, in a reasonably fast timeframe. I'd like us to try that first. Cheers, Brian -- Mozilla Networking/Crypto/Security (Necko/NSS/PSM) _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy