All, We have received a request from Kamu Sertifikasyon Merkezi (KamuSM) ( https://kamusm.bilgem.tubitak.gov.tr/) to expand its TLD restriction in NSS to the .tr ccTLD level to meet the needs of its customers in Turkey. (Its root is TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1 <https://crt.sh/?sha256=46EDC3689046D53A453FB3104AB80DCAEC658B2660EA1629DD7E867990648716>.) Currently, it is restricted at the subdomain level in NSS code to certain subdomains under the .tr ccTLD (gov.tr, k12.tr, pol.tr, mil.tr, tsk.tr, kep.tr, bel.tr, edu.tr and org.tr.). However, KamuSM currently receives many certificate requests for other domain names ending with “.tr”, and it is unable to provide TLS server certificates to those customers.
KamuSM has had no recent incidents reported. It is audited under ETSI EN 319 411-1 by Kiwa. See https://www.kiwa.com/4a8d6c/globalassets/italy/eidas-certificates/tubitak_2022_signed.pdf . This email begins a 3-week period for public discussion and comment, which I’m scheduling to close on or about November 23, 2022, after which, if no concerns are raised, we will close the discussion and the request may proceed to the approval phase. I urge anyone with concerns or questions to raise them on this list by replying directly in this discussion thread. Likewise, a representative of KamuSM must promptly respond directly in the discussion thread to all questions that are posted. Thanks, Ben Wilson Mozilla Root Program Manager -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CA%2B1gtaZK3RfAn_Fbe1%2BsGCTqU%3DtT0L77O5vryZZkz4%2BmknmFmg%40mail.gmail.com.
