Hi again,
>Thank you for responding Matthias.
>
>On Wed, Apr 11, 2018 at 10:52 AM, m.wiedenhorst---
>via dev-security-policy <dev-secur...@lists.mozilla.org> wrote:
>
>>
>> Hi Wayne
>>
>>> Can anyone say if an equivalent public-facing
>>>
Hi Wayne
> Can anyone say if an equivalent public-facing
> report exists for ETSI audits? If so, I think we should require CAs to
> provide these reports with their root inclusion requests.
ETSI does require reports on key ceremonies (ETSI EN 319 411-1, 6.5.1 g).
But ETSI does NOT require
TÜViT as a conformity assessment body would like to add some explanations to
clear up some misunderstandings about ETSI auditing.
First of all, we would like to give one preliminary remark. ETSI has separated
the TSP technical requirements (ETSI EN 319 411-1, ETSI EN 319 401) from the
CAB
3 matches
Mail list logo
