I've gone ahead and removed references to ETSI TS 101 456 and TS 102 042
from the 2.6 branch of the policy:
https://github.com/mozilla/pkipolicy/commit/49a07119a1fd5c887d4b506f60e210fad941b26a
- Wayne
On Tue, Mar 27, 2018 at 12:44 PM, Wayne Thayer wrote:
> There has been
There has been a lot of confusion about the transition to the new
standards, and I believe that this change makes it clearer that Mozilla no
longer accepts audits based on the older ETSI standards.
On Tue, Mar 27, 2018 at 4:28 AM, Julian Inza via dev-security-policy <
I support this change. Previously accepted audits are covered by previously
accepted policies, so there's no issue since there should be no new audits
going forward using these criteria, much in the same way all new, valid
WebTrust audits are using the new criteria.
On Mon, Mar 26, 2018 at 4:41
European Conformity Assessment Bodies are nowadays issuing Audit Certificates
aligned with EN 319 401, EN 319-411-1 and EN 319 411-2 standards.
There is no need to explicitly deny validity to previous standars, because as
Jakob states, they can reflect the chain of audits.
In fact, TS 102 042
On 26/03/2018 22:41, Wayne Thayer wrote:
Mozilla policy section 3.1.2.2 states:
ETSI TS 102 042 and TS 101 456 audits are only acceptable for audit periods
ending in July 2017 or earlier.
Now that we are past this deadline, I propose that we remove all references
to ETSI TS 102 042 and 101
Mozilla policy section 3.1.2.2 states:
ETSI TS 102 042 and TS 101 456 audits are only acceptable for audit periods
> ending in July 2017 or earlier.
>
Now that we are past this deadline, I propose that we remove all references
to ETSI TS 102 042 and 101 456 from the policy.
This is:
6 matches
Mail list logo