Hello, I came across this section on the Wikipedia page for the .zw ccTLD[1]:
"Currently, Zimbabwean individuals and business entities are now banned by the Certification Authority Browser Forum from receiving Extended Validation SSL, Organization Validation (OV), and Domain Validation (DV) certificates." This poorly quoted statement[2] and citation do not provide any details around why this would be nor evidence _that_ this is the case. The only other reference I was able to find was [3], so I was looking for some clarification from the forum here: I understand that a given CA may choose (or be required to, by whatever jurisdiction it is subject to) not to issue a cert for a given name or domain, but is there indeed a CA/B Forum list of restricted (TL or otherwise) domains? Thanks for indulging me on this, -Jan P.S.: Not being a member of the CA/B Forum, I wasn't able to post this question there; the overlap with this mailing list, however, makes me believe the right folks to answer can likely be found here as well. My apologies if this is considered off-topic. [1] https://en.wikipedia.org/wiki/.zw [2] traced back to, I think, https://www.techzim.co.zw/2016/09/zimbabwean-websites-insecure-banned-receiving-security-certificates-ssl/ [3] https://www.wiyre.com/list-of-countries-banned-restricted-from-obtaining-ssl-certificates/ -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/20210806212111.GA5125%40netmeister.org.
