Thanks Wayne. Definitely, these things, the less left to interpretation, the better... I personally think BR should consider the fact that under a Root there can be different certificate policies, because as you say the strict reading of BR implies that suspension is forbidden also for certificates out of the scope of BR.
Best, Pedro _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
