>
> As part of the discussions on this proposal, namely that CAs “maintain and
> test mass revocation plans annually, including the revocation of 30
> randomly chosen certificates within a 5-day period,” I’ve received a few
> comments via private channels, and to ensure transparency and foster
> discussion, I am sharing them here anonymously:
>
Would a CA be allowed to pre-notify customers whose certs were randomly
selected and {pre/re}-issue them replacements?-- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CAFH29trW2BqZ_WjCEDhY63Y7Acmqrf1%3DSVDtJ4O0%3Dk03d__7Yw%40mail.gmail.com.
