No problem at all. I thought that while distrusted no needed to follow nor
update the CCADB. Will do asap.

Best regards

Iñigo Barreira
StartCom CA Limited

-----Original Message-----
From: Rob Stradling [] 
Sent: jueves, 27 de abril de 2017 13:08
To: Inigo Barreira <>; mozilla-dev-security-policy
Subject: Re: Symantec Conclusions and Next Steps

On 27/04/17 11:56, Inigo Barreira wrote:
> Good to know that our new certs are there :-) Regarding StartCom, 
> these are the new certs we´ve generated and will be used to apply for 
> inclusion in the Mozilla root program. Nothing to disclose at the 
> moment I guess. We´ve not been audited yet nor applied.

Hi Iñigo.  The old StartCom roots still have the SSL trust bit enabled in
NSS, and you've used one of those old roots to cross-sign the new StartCom
roots.  AFAICT, that means that these new StartCom intermediates do need to
be disclosed to the CCADB.

Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online

Attachment: smime.p7s
Description: S/MIME cryptographic signature

dev-security-policy mailing list

Reply via email to