On Fri, Aug 6, 2021 at 3:05 PM 'Jan Schaumann' via [email protected] <[email protected]> wrote:
> The only other reference I was able to find was [3], https://youtube.com/watch?v=YWdD206eSv0 😅 but is there indeed a CA/B Forum list of restricted > (TL or otherwise) domains? No. However, there can be practical limitations derived from the requirements. For example, certain certificates require information to be confirmed with an authoritative government source (as opposed to a secondary aggregator, which would just be shifting validation responsibility), so it’s possible for some jurisdictions to restrict access to third-parties (like CAs) to such sources. But there’s nothing explicit. P.S.: Not being a member of the CA/B Forum, I wasn't > able to post this question there; the overlap with > this mailing list, however, makes me believe the right > folks to answer can likely be found here as well. > My apologies if this is considered off-topic. FWIW, [email protected] exists exactly for this, which will be routed by the chair to the appropriate chartered work group and provide a Forum-approved response. The downside is the questions and answers aren’t public, and you only see the answer that could pass consensus, which may or may not cover all the nuance. -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CAErg%3DHEo95B-PqxW7SpLOJhoLzcCPeeMFcrnd-aru%2BzaQxkBXQ%40mail.gmail.com.
