PITRA should by definition only assess something that are yet to happen, such as new root/sub root and new changes. A normal audit cover the same scope of PITRA and also audit its performance (so called operational efficiency) over a period of time.
On 9/3/2014 8:25 PM, Kurt Roeckx wrote: > On 2014-09-02 22:26, Kathleen Wilson wrote: >> >> As always, I will appreciate thoughtful and constructive feedback on >> this. > > Do we need to specify what we understand of that a PITRA should do > exactly, and how it's different from a normal audit? > > > Kurt > > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy > . >
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
