All, I posted the following in Mozilla’s governance group <https://groups.google.com/a/mozilla.org/g/governance>.
Please feel free to comment either here in MDSP <https://groups.google.com/a/mozilla.org/g/dev-security-policy> or in Mozilla’s governance group. ~~ All, I plan to hand ownership of the “Mozilla CA Certificate Policy <https://wiki.mozilla.org/Modules/Activities#Mozilla_CA_Certificate_Policy>'' module over to Ben Wilson next week. In his role at Mozilla, Ben has become responsible for most of the updates to the Mozilla Root Store Policy (MRSP) <http://www.mozilla.org/projects/security/certs/policy/>. Ben has led the discussions and release of 4 versions of the MRSP: versions 2.7.1 <https://blog.mozilla.org/security/2021/04/26/mrsp-v-2-7-1/>, 2.8 <https://blog.mozilla.org/security/2022/05/23/upgrading-mrsp-to-v-2-8/>, 2.8.1 <https://wiki.mozilla.org/CA/Communications#February_2023_CA_Communication>, and 2.9 <https://blog.mozilla.org/security/2023/09/13/version-2-9-of-the-mozilla-root-store-policy/>. For the past couple of years Ben has represented Mozilla on all Certification Authority (CA) compliance bugs <https://wiki.mozilla.org/CA/Incident_Dashboard> related to the enforcement of the MRSP and other policies governing CAs. Additionally, Ben continues to represent Mozilla in the CA/Browser Forum, fostering synergy between the CA/Browser Forum Baseline Requirements and the MRSP. There are two modules related to Mozilla’s CA Program <https://wiki.mozilla.org/CA> which govern the default set of certificates in Network Security Services (NSS) and distributed in Mozilla’s software products. They are: 1) CA Certificates <https://wiki.mozilla.org/Modules/All#CA_Certificates> Description: Determine which root certificates should be included in Mozilla software products, which trust bits should be set on them, and which of them should be enabled for EV treatment. Evaluate requests from Certification Authorities (CAs) for inclusion or removal of root certificates, and for updating trust bit settings or enabling EV treatment for already included root certificates. Owner: Ben Wilson – no change Peer(s): Kathleen Wilson – no change 2) Mozilla CA Certificate Policy <https://wiki.mozilla.org/Modules/All#Mozilla_CA_Certificate_Policy> Description: Definition and enforcement of policies governing Certification Authorities, their root certificates included in Mozilla software products, and intermediate and end-entity certificates within those CA hierarchies. Owner: Kathleen Wilson -- Proposed Owner: Ben Wilson Peer(s): Ben Wilson – Proposed Peer(s): Kathleen Wilson Best Regards, Kathleen ~~ -- You received this message because you are subscribed to the Google Groups "dev-security-policy@mozilla.org" group. To unsubscribe from this group and stop receiving emails from it, send an email to dev-security-policy+unsubscr...@mozilla.org. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/08c6a57e-cde3-4f45-bffd-d909f068c740n%40mozilla.org.
