> * I am unable to locate a BR audit for the GCSR2016, but the websites trust
> bit has been requested. I first thought that this root was not intended for
> serverAuth, but section 1.2.1.4 of the CPS indicates that there is an “AC
> CAMERFIRMA GLOBAL FOR WEBSITES” subordinate CA that chains to
How about something simple like:
(Rephrase terminology etc. as necessary)
If a CA has any arrangements with any 3rd parties to act as
intermediaries between the subscriber and the CA, while not being the
party that operates the normal uses of the private key on the
subscribers behalf, the CA
Hi Wyne
here our answers to the ==Bad== issues we are working on the ==Meh== ones.
1 * The inclusion request references a much older CPS [3] that doesn't list the
2016 versions of these roots or comply with current policies. I only reviewed
the newer CPS [5], but this CPS (section 1.2.1)
3 matches
Mail list logo