[cabfpub] FW: SANS NewsBites Vol. 17 Num. 026 : Health Care Data Increased Risk; Federal CIOs Say OMB Reporting Requirements Not Helpful; US Retailers Must Adopt Chip-Based Payment Card Technology by October or Assume Breach Liability; China Delays...
Richard Wang
richard at wosign.com
Fri Apr 3 19:37:06 MST 2015
I read the Mozilla report carefully that I think it is clear, thanks.
Regards,
Richard
> On Apr 4, 2015, at 08:30, Ryan Sleevi <sleevi at google.com> wrote:
>
>
>
>> On Fri, Apr 3, 2015 at 5:24 PM, Richard Wang <richard at wosign.com> wrote:
>> I agree the editor opinion that browser should treat west CA same as China CA!
>> Comodo and TurkTrust also issued the wrong cert for Google, but do NOT remove their root.
>
> There's a lot fundamentally wrong here - both from Pescatore and from Richard's statements above.
>
> To the extent I can or will comment on this, I would encourage all interested parties to read the "longer document" provided by Mozilla on https://blog.mozilla.org/security/2015/04/02/distrusting-new-cnnic-certificates/ , which should make it abundantly clear the uniqueness of the situation and the factors that go in to such decisions, none of which include nationality.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://cabforum.org/pipermail/public/attachments/20150404/c77cad49/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 7208 bytes
Desc: not available
Url : https://cabforum.org/pipermail/public/attachments/20150404/c77cad49/attachment-0001.bin
More information about the Public
mailing list