LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

China Internet Network Information Center accepted as a Mozilla root CA

China Internet Network Information Center accepted as a Mozilla root CA

Posted Feb 3, 2010 13:53 UTC (Wed) by gerv (subscriber, #3376)
In reply to: China Internet Network Information Center accepted as a Mozilla root CA by josh
Parent article: China Internet Network Information Center accepted as a Mozilla root CA

"Innocent until proven guilty" is not, of course, a summary of our CA inclusion policy. The inclusion policy is here:
http://www.mozilla.org/projects/security/certs/policy/

Given that CNNIC met all the requirements, just as all other CAs included under the policy did, we think that the burden of proof of wrongdoing should be on those who are alleging it.

The link you gave to Wikipedia shows that CNNIC produced some software, other people called it malware, CNNIC sued them and CNNIC won.

We also have official government CAs in our root store from Japan, Taiwan and the Netherlands. Where does this end? Given China's historical difficult relationships with Taiwan and Japan, are the "army of Chinese internet users" next going to say that they don't trust the Taiwanese and Japanese governments either, and we should remove their roots too?

Gerv

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds