CA:GovernmentCAs: Difference between revisions

Jump to navigation Jump to search

CA:GovernmentCAs (view source)

Revision as of 00:22, 22 August 2012

80 bytes added ,  22 August 2012
→‎What Inclusion of a CA in Mozilla's Program Means
Line 95: Line 95:
** knowingly issues certificates without the knowledge of the entities whose information is referenced in the certificates; or
** knowingly issues certificates without the knowledge of the entities whose information is referenced in the certificates; or
** knowingly issues certificates that appear to be intended for fraudulent use.
** knowingly issues certificates that appear to be intended for fraudulent use.
* Mozilla will consider removing a root certificate from NSS if
* Mozilla will consider removing a root certificate from NSS if the CA is issuing certificates in a manner that is non-compliant with Mozilla's CA Certificate Policy. (As per the previous point, a CA that is issuing certificates that are being used in MitM attacks is non-compliant with Mozilla's CA Certificate Policy.)
** The CA is issuing certificates in a manner that is non-compliant with Mozilla's CA Certificate Policy.
** The CA is issuing certificates that are being used in MitM attacks.
* SSL makes tampering visible to its victims. The certificate has to actually make it to the users client application before the user can decide to trust it.
* SSL makes tampering visible to its victims. The certificate has to actually make it to the users client application before the user can decide to trust it.
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/463031"

Navigation menu