Re: Policy 2.7 Proposal: Require EKUs in End-Entity Certificates

Brian, I think we are in agreement that this isn't a desirable addition to our policy. On Mon, Apr 1, 2019 at 5:36 PM Brian Smith via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > Wayne Thayer via dev-security-policy < > dev-security-policy@lists.mozilla.org> > wrote: > >

Audit Reminders for Intermediate Certs

All, CCADB sends email on the first Tuesday of each month to CAs with outdated audit statements in their intermediate cert records. An audit statement is determined to be outdated when its Audit Period End Date is older than 1 year + 3 months. https://wiki.mozilla.org/CA/Email_templates#Outd

SwissSign: Error in OrganisationIdentifier in signature/seal certificate

The following incident report is also posted in Bugzilla https://bugzilla.mozilla.org/show_bug.cgi?id=1541064 Incident Report 1. How your CA first became aware of the problem (e.g. via a problem report submitted to your Problem Reporting Mechanism, a discussion in mozilla.dev.security.policy, a