I just want to ask you, is not the PDS is enough for this? 119411-1 (319411-1) says you need publish PKI Disclosure Staetement (PDS) 119411-2 (319411-2) refences for certificate profiles the 119412-5
The 119412-5 (319412-5) says in section 5 Requirements on QCStatements in EU qualified certificates in the last row of the table, that you need to have minimum one ereference to an english PDS. So for qualified certificates are mandatory why dont extend it for all root certs and usages? I think nearly nobody reads trough a CP or CPS, but the PDS gives reasonably view for a customer, and most of the CAs already have it in english. regards. Viktor Varga _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
