[cabfpub] URLs from my Browser Update

Gervase Markham gerv at mozilla.org
Tue Sep 16 21:35:16 MST 2014


mozilla::pkix page:
https://wiki.mozilla.org/SecurityEngineering/mozpkix-testing

Revocation plan: https://wiki.mozilla.org/CA:RevocationPlan

HPKP bug: https://bugzilla.mozilla.org/show_bug.cgi?id=787133

Pinning implementation:
https://wiki.mozilla.org/SecurityEngineering/Public_Key_Pinning/Implementation_Details

BR audit expectations: https://wiki.mozilla.org/CA:BaselineRequirements

BR issues tracking bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1029147

SHA-1 cutoff bug: https://bugzilla.mozilla.org/show_bug.cgi?id=942515

Security blog on 1024-bit roots:
https://blog.mozilla.org/security/2014/09/08/phasing-out-certificates-with-1024-bit-rsa-keys/


Remaining root removals:
    Thawte (2), Verisign (1) and Equifax(1) - Symantec:
https://bugzilla.mozilla.org/show_bug.cgi?id=986014
    GTE CyberTrust - Verizon:
https://bugzilla.mozilla.org/show_bug.cgi?id=1047011
    Equifax (2) - Symantec:
https://bugzilla.mozilla.org/show_bug.cgi?id=986019

Bug on not trusting anything < 2048 bits:
https://bugzilla.mozilla.org/show_bug.cgi?id=1049740

CA program administration automation plan:
https://etherpad.mozilla.org/CA-Program-Automation

Gerv


More information about the Public mailing list