On 10/24/14, 4:24 PM, Daniel Roesler wrote:
Howdy all,
I'm trying to understand the trust flags in the root CA list[1].
According to Bug #605187[2] , the AOL root cert[3] should be removed.
However, it is still in the list and all the flags on it appear to the
be the same as the DigiCert EV cert
As you know, the CAB Forum guidelines do not mandate use of CAB Forum policy
OIDs to assert DV/OV compliance. We'd happily support a change in this policy
at the CAB Forum and plan to update our certs accordingly if such ballot passes.
Jeremy
-Original Message-
From: dev-security-policy
On Mon, Oct 27, 2014 at 10:58 AM, John Nagle wrote:
> It's appropriate for browsers to show that new information with
> users. In the browser, there are two issues: 1) detecting OV
> certs, which requires a list of per-CA OIDs, and 2) displaying
> something in the GUI.
If users perceive the new
On Mon, Oct 27, 2014 at 10:58 AM, John Nagle wrote:
>> On 27/10/14 08:16, Ryan Sleevi wrote: If you're trusting
>> certificates to assert information about either the identity of the
>> entity behind the key or that the CA has done due diligence, well,
>> you're using certificates for something t
On 27/10/14 08:16, Ryan Sleevi wrote: If you're trusting
certificates to assert information about either the identity of the
entity behind the key or that the CA has done due diligence, well,
you're using certificates for something they're neither intended for
nor well suited for, so you'll have
Le lundi 27 octobre 2014 07:54:04 UTC+1, John Nagle a écrit :
> Here's a nice example of Mozilla not fully understanding Organization
> information in certificates: "www.facebook.com".
>
> Firefox says, for "https://www.facebook.com";,
>
> "This web site does not supply ownership information".
>
On 27/10/14 08:16, Ryan Sleevi wrote:
If you're trusting certificates to assert information about either the
identity of the entity behind the key or that the CA has done due
diligence, well, you're using certificates for something they're neither
intended for nor well suited for, so you'll have
On Mon, October 27, 2014 12:14 am, John Nagle wrote:
> (Resend, after error "The message could not be delivered to the
> following recipient:")
> Here's a nice example of Mozilla not fully understanding Organization
> information in certificates: "www.facebook.com".
>
> Firefox says, for "http
(Resend, after error "The message could not be delivered to the
following recipient:")
Here's a nice example of Mozilla not fully understanding Organization
information in certificates: "www.facebook.com".
Firefox says, for "https://www.facebook.com";,
"This web site does not supply ownership i
9 matches
Mail list logo