(something weird happened in the reply all. Re-sending).
On 11/11/2016 3:45 μμ, Gervase Markham wrote:
On 11/11/16 13:26, Dimitris Zacharopoulos wrote:
Although this is very helpful so that people can better understand the
CA/B Forum's expectations and BR scope by introducing fresh language and
definitions (and make some definitions clearer), I believe that
proposing new definitions is a very radical move that would ultimately
cause even more confusion to CAs, auditors and relying parties. The best
place to discuss these definitions would be the CA/B Forum.
Hi Dimitris,
Can you explain what about Peter's proposals are radical? It seems to me
to be mostly a clarification of existing intent, at least as far as
Mozilla policy is concerned.
Gerv
I was referring to not changing the definitions for which most people
are currently familiar with and are included in the BRs. IMHO defining
"CA" as a Certificate with CA:true when the BRs define a "CA" as "an
organization" is a big step to make. I thought Peter's proposal
included introducing these definitions in the Mozilla policy to clarify
the proper BR scope. My point is that we need to be as aligned with
existing BR definitions as possible to avoid more confusion. If these
definitions are to be improved/changed (something we're already working
on in the Forum's policy review WG), I believe the CA/B Forum is the
best place to discuss these changes.
Dimitris.
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
