Re: [FORGED] Re: Firefox removes UI for site identity

2019-10-25 Thread James Burton via dev-security-policy
Extended validation was introduced at a time when mostly everyone browsed the internet using low/medium resolution large screen devices that provided the room for an extended validation style visual security indicator . Everything has moved on and purchases are made on small screen devices that

Re: [FORGED] Re: Firefox removes UI for site identity

2019-10-25 Thread Phillip Hallam-Baker via dev-security-policy
On Fri, Oct 25, 2019 at 4:21 AM James Burton wrote: > Extended validation was introduced at a time when mostly everyone browsed > the internet using low/medium resolution large screen devices that provided > the room for an extended validation style visual security indicator . > Everything has

AW: Policy 2.7 Proposal: Forbid Delegation of Email Validation for S/MIME Certificates

2019-10-25 Thread Buschart, Rufus via dev-security-policy
Von: Wayne Thayer On Thu, Oct 24, 2019 at 10:33 AM Buschart, Rufus wrote: >> One last remark: I might be the only one, but I'm not 100% sure what the >> "this verification" at the end of the last sentence refers to. >> Is "this verification" (a) the

Re: Policy 2.7 Proposal: Forbid Delegation of Email Validation for S/MIME Certificates

2019-10-25 Thread Ryan Sleevi via dev-security-policy
On Fri, Oct 25, 2019 at 6:44 PM Buschart, Rufus wrote: > Your statement is, in my opinion, totally correct for external CAs. But > the scenario I have in my mind is a little bit different: In my scenario, > there is > a Root CA that is included in the Root stores serving the general public > and