On Tuesday, April 12, 2016 at 12:29:16 PM UTC-7, Rick Andrews wrote: > On Tuesday, April 12, 2016 at 11:00:11 AM UTC-7, Kathleen Wilson wrote: > > It was pointed out to me that it was not clear that the dates I am asking > > for in ACTION #1a and ACTION #1b are regarding issuance of end-entity SHA-1 > > SSL certs. So, I added "(end-entity)" to both, as follows. > > > > "ACTION #1a: ... Please enter the last date that a SHA-1 based TLS/SSL > > (end-entity) certificate was issued that chained up to your root > > certificates included in Mozilla's program. ..." > > > > "ACTION #1b: Enter the date when all of the SHA-1 based TLS/SSL > > (end-entity) certificates that chain up to your root certificates included > > in Mozilla's CA Certificate Program will either expire or be revoked. ..." > > > > Hopefully that makes it a bit more clear. > > > > Kathleen > > Kathleen, since there's only one box, we'll give you one date for all roots?
Yes, but please clarify as appropriate in the "ACTION #1c TEXT INPUT". For instance, I suspect that Symantec may want to specify different dates for most of their roots. Also, please note that I've added a clarification about the dates throughout the survey: "(use format MM/DD/YYYY)" Thanks, Kathleen _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
