Changes

== CRLReason Codes for End-Entity TLS Certificates ==

[https://www.mozilla.org/projects/security/certs/policy/ Mozilla's Root Store Policy] (starting with version 2.8) has a section dedicated to CRLRevocation Reasons for end-entity TLS certificates; e.g. website server authentication certificates. The section was added because Mozilla believes that [[CA/Revocation_Checking_in_Firefox#Revocation_Is_Important|revocation checking is important]], and there were several problems with not having such policy, including: