Does the FOITT cert chain up to one of the roots in the Mozilla program? https://wiki.mozilla.org/CA:IncludedCAs
I only see 3 Swisscom roots and 3 SwissSign roots, nothing that is obviously Swiss government. On Thu, Feb 5, 2015 at 6:33 PM, <[email protected]> wrote: > Hi all > > A few weeks ago, I got some mails about a broken iframe. The secure > connection to the remote server failed (OCSP error). The site was signed > by Swiss Government SSL CA 01. I contacted the technical support and > they told me, that the Federal Office of Information Technology, Systems > and Telecommunication (FOITT) of Switzerland shut down their OCSP > servers! So all secure Swiss gov sites are broken if you requires OCSP. > I contacted them directly and tried to explain why the OCSP service is a > requirement for a CA, but they do not react. > > Maybe someone of the Mozilla security team could contact them again. > > Regards, > Jonas > > > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy > > _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
