Rob Stradling via dev-security-policy <dev-security-policy@lists.mozilla.org> writes:
>CAs / Responder URLs that are in scope for, but violate, the BR prohibition >on returning a signed a "Good" response for a random serial number Isn't that perfectly valid? Despite the misleading name, OCSP's "Good" just means "not revoked", and a not-revoked reply to a random serial number is correct because it's not revoked. Peter. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy