[cabfpub] FW: SANS NewsBites Vol. 17 Num. 026 : Health Care Data Increased Risk; Federal CIOs Say OMB Reporting Requirements Not Helpful; US Retailers Must Adopt Chip-Based Payment Card Technology by October or Assume Breach Liability; China Delays...

Richard Wang richard at wosign.com
Sat Apr 4 02:37:06 UTC 2015

I read the Mozilla report carefully that I think it is clear, thanks.



> On Apr 4, 2015, at 08:30, Ryan Sleevi <sleevi at google.com> wrote:
>> On Fri, Apr 3, 2015 at 5:24 PM, Richard Wang <richard at wosign.com> wrote:
>> I agree the editor opinion that browser should treat west CA same as China CA!
>> Comodo and TurkTrust also issued the wrong cert for Google, but do NOT remove their root.
> There's a lot fundamentally wrong here - both from Pescatore and from Richard's statements above.
> To the extent I can or will comment on this, I would encourage all interested parties to read the "longer document" provided by Mozilla on https://blog.mozilla.org/security/2015/04/02/distrusting-new-cnnic-certificates/ , which should make it abundantly clear the uniqueness of the situation and the factors that go in to such decisions, none of which include nationality.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150404/c77cad49/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 7208 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150404/c77cad49/attachment-0001.p7s>

More information about the Public mailing list