On 13/02/2017 16:15, Jürgen Brauckmann via dev-security-policy wrote: > Gervase Markham via dev-security-policy schrieb: >> 1) As with all CAs, update all their domain validation code to use one >> of the 10 approved methods; > > I'm probably confused regarding BRs pre/post Ballot 181: Aren't there > only 4 methods per Ballot 181?
My understanding is that while Ballot 181 included only those methods from Ballot 169 that were not affected by any patent exclusion notices, plus "any other method", Mozilla will disallow "any other method" and instead ask CAs to limit their validation methods to the ones from Ballot 169. This approach would still be compliant with the BRs because the 6 methods affected by the patent exclusions can be counted as implementations of "any other method". _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
