Frank Hecker wrote: > Trustwave has applied to add two EV root CA certificates to the Mozilla > root store, and to also upgrade an existing root CA certificate for EV > use, as documented in the following bugs: > > https://bugzilla.mozilla.org/show_bug.cgi?id=409837 > https://bugzilla.mozilla.org/show_bug.cgi?id=409838 > https://bugzilla.mozilla.org/show_bug.cgi?id=409840 <snip> > I have evaluated their request, as per the mozilla.org CA certificate > policy: > > http://www.mozilla.org/projects/security/certs/policy/ > > and plan to officially approve this request after a public comment period.
The comment period has ended, and there are no outstanding issues and questions, so I'm formally approving the Trustwave requests to add two new EV-capable roots and to EV-enable its existing root. I've filed several bugs against NSS and PSM to make the actual code changes required: https://bugzilla.mozilla.org/show_bug.cgi?id=418907 https://bugzilla.mozilla.org/show_bug.cgi?id=418910 https://bugzilla.mozilla.org/show_bug.cgi?id=418902 Note that for the XRamp Global CA (bug 409840) I filed a bug against PSM only because the cert in question is already in NSS. For the other two roots I filed bugs against both NSS and PSM, since the relevant changes need to be made in both places (NSS for including the root, PSM for the EV metadata). Frank -- Frank Hecker [EMAIL PROTECTED] _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto