Thanks, Corey. I've added this as a matter to consider in a future version of the Root Store Policy. https://github.com/mozilla/pkipolicy/issues/215
On Thu, May 21, 2020 at 7:23 PM Corey Bonnell via dev-security-policy < [email protected]> wrote: > While I realize the current topic is concerning TLS, I find it rather > surprising that Mozilla Policy does not mandate PoP for S/MIME certificate > issuance. Lack of checking for S/MIME would present more concrete security > concerns, so perhaps this should be addressed in a future update to the > Policy. > > Thanks, > Corey > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy > _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
