Dear Mozilla Community, I am pleased to announce the publication of a new resource aimed at enhancing the compliance practices of Certification Authorities (CAs). The draft "Lessons Learned" wiki page is now available at https://wiki.mozilla.org/CA/Lessons_Learned.
Over 1,000 CA compliance incidents have been reported since 2014. They identify common compliance issues and corrective/preventative measures taken by CAs. The purpose of the wiki page is to provide CAs with valuable insights and practical remediation actions to address these common issues effectively. By learning from other CAs' past mistakes, they can improve their compliance going forward. We invite you to review the "Lessons Learned" wiki page and share your comments and suggestions for improvement. Your feedback is crucial in helping us refine this resource and ensure it meets the needs of the community. Please send your comments to me directly or add them to the discussion page linked from the wiki. We look forward to your input and collaboration. Thank you for your continued support and commitment to maintaining high standards of security and compliance for CAs. Ben Wilson Mozilla CA Program Manager -- You received this message because you are subscribed to the Google Groups "dev-security-policy@mozilla.org" group. To unsubscribe from this group and stop receiving emails from it, send an email to dev-security-policy+unsubscr...@mozilla.org. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CA%2B1gtaa4WEfwjnC27n2JEAhC4pg7RC74QyvX0XjfTwKN3KLSdw%40mail.gmail.com.
