On 12/05/17 18:54, Jakob Bohm wrote: > Perhaps tweak the wording to make the document submitted to the CCADB > binding, rather than any CP/CPS published elsewhere.
While that certainly seems attractive, changing the location of the canonical CP/CPS from the CA's repository to Mozilla's repository seems to be rather taking over a CA function. If many or most root programs were using the CCADB, this might be more justifiable. What if several root programs said the applicable version was the one they held in their systems? That doesn't sound like a great outcome. CAs are required to keep the CCADB up to date anyway. Gerv _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
