On 06/06/17 22:26, Jakob Bohm wrote:
On 06/06/2017 22:08, Ryan Sleevi wrote:
<snip>
Signing data is heavily reliant on CA competency, and that's in
unfortunately short supply, as the economics of the CA market make it
easy to fire all the engineers, while keeping the sales team, and
outsourcing the rest.
Ryan, thankfully at least some CAs have some engineers. :-)
Which is why I am heavily focused on allowing new technology to be be
developed by competent non-CA staff (such as IETF),
Jakob, if I interpret that literally it seems you're objecting to CA
staff contributing to IETF efforts. If so, may I advise you to beware
of TLS Feature (aka Must Staple), CAA, CT v1 (RFC6962) and especially CT
v2 (6962-bis)?
;-)
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
