Confirmed users, Administrators
5,526
edits
CA:CertificatePolicyV2.3: Difference between revisions
→Proposed Changes Currently in Discussion
| Line 71: | Line 71: | ||
* [https://groups.google.com/d/msg/mozilla.dev.security.policy/RmEDMqiff3Y/oTVKfbIMAQAJ Audit Report Timing] | * [https://groups.google.com/d/msg/mozilla.dev.security.policy/RmEDMqiff3Y/oTVKfbIMAQAJ Audit Report Timing] | ||
** The current CA policy does not specify when audit reports are due to Mozilla relative to the end date of the audit period. It only says that CAs must provide the reports to Mozilla within 30 days of receiving the report from their auditor. For the next version of the CA policy, I suggest that this be remedied. | ** The current CA policy does not specify when audit reports are due to Mozilla relative to the end date of the audit period. It only says that CAs must provide the reports to Mozilla within 30 days of receiving the report from their auditor. For the next version of the CA policy, I suggest that this be remedied. | ||
* [https://groups.google.com/d/msg/mozilla.dev.security.policy/j9ntnYr-5o4/CTpcECsKBQAJ Update transitive disclosure policy to reduce duplication of full CA hierarchies] | |||
** Update section 8 of Mozilla's CA Certificate Inclusion policy to say that transitive disclosure is not required when the subject of the CA-certificate is also the subject of a certificate included directly in the Mozilla trust store. | |||
== Proposed Changes That Need To Be Discussed == | == Proposed Changes That Need To Be Discussed == | ||