On 9/10/2015 1:20 PM, Kathleen Wilson wrote [in part]:
> Proposal for version 2.3 of Mozilla's CA Certificate Policy:
>
> Remove the code signing trust bit.
>
> If this proposal is accepted, then there would be follow-up action items
> that would need to happen after version 2.3 of the policy is published:
> 1) Remove any root certificates that do not have the Websites and/or
> Email trust bit set.
> 2) Remove references to Code Signing trust bits from Mozilla’s wiki pages.
>
> Note: This proposal came out of the discussion called "Remove Roots used
> for only Email and CodeSigning?"
> https://groups.google.com/d/msg/mozilla.dev.security.policy/8VdIUKX5MbU/LQIOjgTIGQAJ
> I am separating it out into its own discussion at this point to make it
> very clear that we are discussing this proposal as a change to version
> 2.3 of Mozilla's CA Certificate Policy.
>
> == The proposed changes to the policy are as follows ==
>
[snipped]
How broadly is this being announced?
--
David E. Ross
The Crimea is Putin's Sudetenland.
The Ukraine will be Putin's Czechoslovakia.
See <http://www.rossde.com/editorials/edtl_PutinUkraine.html>.
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
