We (Let's Encrypt) just announced a new cross-sign from IdenTrust which is a
bit unusual because it will extend beyond the expiration of the issuing root.
More details can be found here:
https://letsencrypt.org/2020/12/21/extending-android-compatibility.html
Best,
Josh
_
On Thu, Dec 17, 2020 at 10:32 AM Aaron Gable via dev-security-policy <
dev-security-policy@lists.mozilla.org> wrote:
> One potential option (5) would be to go even further than (2), and remove
> the OCSP paragraph from the MRSP§6 entirely. Given that MRSP§2.3 says "CA
> operations relating to issu
2 matches
Mail list logo