On Wed, Oct 9, 2019 at 1:57 PM Houle, Todd - 1120 - MITLL < [email protected]> wrote:
> https://cabforum.org/2017/03/17/ballot-193-825-day-certificate-lifetimes/ > > > > I know Mozilla is supporting these requirements on Root CA’s that it > distributes. Anything about end entity certs? Will or does Firefox > require the same configuration on those? > The CA/Browser Forum lifetime requirements only apply to end-entity certificates. Mozilla enforces these requirements on CAs that are included in our root store via policy, and we've found this to be effective. We also technically limit the lifetime of EV certificates in Firefox, but we currently have no plans to do the same for all certificates. > > > I know Apple is including this requirement for its OS (Safari) for 10.15. > Has Google Chrome also implemented this into their certificate validation? > Chrome has in the past enforced end-entity certificate lifetime in code, but you'll need to confirm that with the Chrome team. > > > Thank you, everyone > > Todd > _______________________________________________ > Enterprise mailing list > [email protected] > https://mail.mozilla.org/listinfo/enterprise > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise or send an email to > [email protected] with a subject of "unsubscribe" >
_______________________________________________ Enterprise mailing list [email protected] https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to [email protected] with a subject of "unsubscribe"
