Hello, sorry if this is a silly question, but I was wondering if it is allowed that a Root or Intermediate CA suspends the certificate of an issuing CA.
We can imagine the case of a suspected key compromise, or even a contractual breach, that could lead to recommend putting the Issuing CA in "quarantine". My trouble is that BR disallows the suspension of subscriber SSL certificate, so the suspension of the CA could lead to a temporary suspension of all SSL certificates under it. I'd appreciate if you can help me to see the light. Best, Pedro _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
