Re: [FORGED] Fwd: Intent to Ship: Move Extended Validation Information out of the URL bar
在 2019年8月13日星期二 UTC+8下午5:57:38,Man Ho写道: > For EV certificate being useful in email, email client software should > give a special EV treatment to such certificate. I am not aware of any > email client software that support any special EV treatment at all. Do > you have more information to share with us? > > -- Man Ho > > On 13-Aug-19 5:12 PM, Kurt Roeckx via dev-security-policy wrote: > > But EV is still useful for things like code signing and email. And I > > would argue that EV should be the only option for such certificates. There are only EV SSL Guideline and EV CS Guideline. I don't know any other EV Guideline for email certificate. Besides, EV certificate are only issued for organization subscribers. Thanks, Mirro ___ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
Re: [FORGED] Fwd: Intent to Ship: Move Extended Validation Information out of the URL bar
For EV certificate being useful in email, email client software should give a special EV treatment to such certificate. I am not aware of any email client software that support any special EV treatment at all. Do you have more information to share with us? -- Man Ho On 13-Aug-19 5:12 PM, Kurt Roeckx via dev-security-policy wrote: > But EV is still useful for things like code signing and email. And I > would argue that EV should be the only option for such certificates. ___ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
Re: [FORGED] Fwd: Intent to Ship: Move Extended Validation Information out of the URL bar
On 2019-08-13 05:27, Peter Gutmann wrote: Wayne Thayer via dev-security-policy writes: Mozilla has announced that we plan to relocate the EV UI in Firefox 70, which is expected to be released on 22-October. Details below. Just out of interest, how are the CAs taking this? If there's no more reason to pay a substantial premium to enable additional UI bling in browsers, isn't this going to kill the market for EV certs? See the original mail for why the indication has been removed in browsers. But EV is still useful for things like code signing and email. And I would argue that EV should be the only option for such certificates. Kurt ___ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
Re: [FORGED] Fwd: Intent to Ship: Move Extended Validation Information out of the URL bar
Wayne Thayer via dev-security-policy writes: >Mozilla has announced that we plan to relocate the EV UI in Firefox 70, which >is expected to be released on 22-October. Details below. Just out of interest, how are the CAs taking this? If there's no more reason to pay a substantial premium to enable additional UI bling in browsers, isn't this going to kill the market for EV certs? Peter. ___ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy