On 14/11/16 09:25, Gervase Markham wrote: <snip> >>>> a) Ensure the End-Entity certificates follows the S/MIME Certificate >>>> Profile: Minimum >>> >>> What is that? >> >> The Google draft Andrew Whalley published. > > I'm not sure I'm familiar with that; URL?
The archive of Andrew's post is empty for some reason: https://cabforum.org/pipermail/public/2016-October/008592.html Andrew's document is "available here": https://drive.google.com/open?id=0B8nbdAUn7RfQOElGNlhaQTJmYWM Here's what his post said: "Greetings, As I mentioned at the face to face meeting, Gmail will be rolling out the ability for some users to protect their email with S/MIME. While the product details will be announced in due course, we have produced a profile that must be met for certificates to pass validation. In terms of accepted roots, the list is yet to be published but those roots that have the email trust bit set for the programs currently using the CA Community in Salesforce are highly likely to be accepted. The document is available here. Please let me know if you have any comments or questions, Thanks, Andrew" -- Rob Stradling Senior Research & Development Scientist COMODO - Creating Trust Online _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
