Gerv, I'm not clear on what you mean by CAs must use only the 10 Blessed Methods by 21st July 2017.
I'm assuming this is the latest official draft: https://github.com/mozilla/pkipolicy/blob/master/rootstore/policy.md Specifically, does this mean all new domain validations must conform to the 10 methods, or that all new issuance must be based on domains validated with only these 10 methods? Doug > -----Original Message----- > From: dev-security-policy [mailto:dev-security-policy- > bounces+doug.beattie=globalsign....@lists.mozilla.org] On Behalf Of > Gervase Markham via dev-security-policy > Sent: Tuesday, May 9, 2017 12:58 PM > To: mozilla-dev-security-pol...@lists.mozilla.org > Subject: Re: Policy 2.5 Proposal: Indicate direction of travel with respect to > permitted domain validation methods > > On 01/05/17 10:13, Gervase Markham wrote: > > This would involve replacing section 2.2.3 of the policy with: > > <snip> > > Incorporated as drafted. CAs should take note (from this change and from the > CA Communication) that Mozilla's policy is moving in the direction of > requiring > the 10 Blessed Methods alone, and that the deadline is 21st July 2017. > > Gerv > _______________________________________________ > dev-security-policy mailing list > firstname.lastname@example.org > https://lists.mozilla.org/listinfo/dev-security-policy _______________________________________________ dev-security-policy mailing list email@example.com https://lists.mozilla.org/listinfo/dev-security-policy