On Sun, Apr 22, 2018 at 2:56 PM, pfuentes69--- via dev-security-policy < [email protected]> wrote:
> I think you should consider an an exception Issuing CAs including Name > Constraints. This would keep allowing root signing services for corporate > CAs without forcing multiple CAs. > Thank you for the suggestion. It seems reasonable to me. If no one objects, I will move the proposed language to section 5.3.2 so that it applies only to unconstrained intermediates. - Wayne _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
