Rob Stradling

@kroeckx Alternatively (just in case I've failed to convince you of the insignificance of BR 7.1.2.3.a's lack of mention of the User Notice qualifier), how about downgrading WARN_POLICY_QUALIFIER_NOT_CPS from a...

@kroeckx It may be true that "rfc5280 is wrong". However, I was basing my argument on what the BRs and RFC5280 actually say. IIRC (from circa 1999) Netscape displayed the...

Ballot 202 failed (see https://cabforum.org/2017/07/26/ballot-202-underscore-wildcard-characters/), and AFAIK no revised ballot has yet been proposed. The BRs currently specify the following requirement for the subject:commonName field in leaf certificates: _"If present,...

How fully-fledged would ZLint's CT compliance check need to be? For example, would it need to keep an up-to-date list of which logs are accepted by which CT clients, and...

@fotisl Counting google vs non-google would require ZLint to maintain, at the very least, an up-to-date list of Google LogIDs.

It's also worth bearing in mind that the "1 Google, 1 non-Google" requirement in the Google CT Policy is a bootstrapping mechanism. Once the CT ecosystem reaches a to-be-defined level...

Apple now have a CT Policy (https://support.apple.com/en-us/HT205280) and they intend to enforce CT compliance for all TLS connections (https://twitter.com/BasileBailey/status/1003911999506575360) at the end of 2018. This policy seems to be a...

Could any of these packages be (re-)used by ZLint for this purpose? https://github.com/google/certificate-transparency-go/tree/master/ctpolicy https://github.com/google/certificate-transparency-go/tree/master/loglist https://github.com/google/certificate-transparency-go/tree/master/loglist2

RFC5480 specifies "the format of the subjectPublicKeyInfo field in X.509 certificates [RFC5280] that use Elliptic Curve Cryptography (ECC)" (see https://tools.ietf.org/html/rfc5480#section-1). I think it's therefore reasonable to assume that RFC5480 is...

I just filed an erratum against RFC5280: https://www.rfc-editor.org/errata/eid6414