[cabfpub] General WebPKI requirements

Gervase Markham gerv at mozilla.org
Mon Nov 21 18:48:31 UTC 2016


On 19/11/16 23:01, Peter Bowen via Public wrote:
> We have had a number of discussions about how to determine when the
> BRs are applicable and how they apply to things other than End-Entity
> certificates.  I posted a draft to mozilla.dev.security.policy about
> a week ago which attempts to address this along with expectations for
> CAs in the WebPKI.  I’ve updated the draft based on feedback.  A new
> version is below.  While it does reference non-CA/Browser Forum
> documents, I think that this is a reasonable candidate for something
> to discuss in the Forum, as it overlaps with other discussions we
> have been having.

I think it would make sense for someone to publish a document like this
as an informational "Introduction to the WebPKI". It could be on the CAB
Forum website, or elsewhere.

Are any of the outputs of the wpkops group relevant to this, I wonder?
https://datatracker.ietf.org/wg/wpkops/charter/

Gerv



More information about the Public mailing list