[cabf_netsec] Notes from Today's NetSec Call

Dimitris Zacharopoulos jimmy at it.auth.gr
Fri Apr 27 11:17:26 MST 2018



On 27/4/2018 4:34 μμ, Tim Hollebeek via Netsec wrote:
> The “completely rethink the NCSSRs via threat modeling” effort is 
> useful, but it should not be allowed to derail the important 
> incremental improvements that motivated the current work.

I agree with this approach which is why I added the "threat model" 
process for Issuing CAs on the bottom of the "task-list" :) However, the 
results of the threat model discussion around the Root CA management 
system, are a bit more mature and should probably be queued up before last.


Dimitris.


More information about the Netsec mailing list