On Fri, Mar 31, 2017 at 12:24 PM, Jakob Bohm via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > > As previously stated, I think this will be too short if the issuance > happens at a time when a non-CCADB root program (or the CCADB > infrastructure) is closed for holidays, such as the following: >
I'm not sure I've heard of many web pages being closed for the holidays. Are yours? I think Rob Stradling's suggestion more than addresses this - within 1 week of the intermediate being issued or the CA being granted access to the CCADB, whichever is the later? Considering CAs must have 24/7 uptime and be able to review and respond to certificate problem reports within 24 hours, I think the suggestion of how to define holidays is unnecessary. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
