On Tuesday, 16 August 2016 23:23:14 UTC+1, Ryan Sleevi wrote: > I'm curious if there's other options, and I'm curious what the arguments > against #4 or #5 would be. Given that CAs provide such a critical function in > the ecosystem, and these mistakes have far reaching implications, who would > be interested in arguing in favor of keeping this CA/these intermediates > trusted?
How about, 6) Engage with other trust store maintainers which trust this CA to determine a common choice of action. I believe Apple and Microsoft both trust this CA. They too should have concerns about its behaviour and have thoughts about how users should be protected. Or maybe they don't. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy