On 25/02/16 00:11, [email protected] wrote:
Hey all,
Thanks to everyone for the robust discussion here. Gerv, Kathleen and I have
discussed and decided that Mozilla will allow a qualification due to issuance
of SHA-1 certificates, subject to the following conditions:
Do we know if the other Web PKI root store operators are similarly minded?
If Microsoft, Google or Apple happened to decide to reject the request
from Symantec/WorldPay, then presumably Symantec would not go ahead with
issuing any SHA-1 certs.
Ryan, is there anything you can share at this point regarding Google's
intentions in this matter?
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
