[SSL Observatory] did they generate impostor EV certs?
Hodges, Jeff
jeff.hodges at paypal-inc.com
Thu Mar 24 16:53:33 PDT 2011
Thanks.
> As far as I can tell, the certs in question do not contain the
> Comodo/Usertrust EV OID (1.3.6.1.4.1.6449.1.2.1.5.1), and thus should
> not be treated as EV in browsers.
Yeah, I (now) see this..
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.1.3.4
CPS: https://secure.comodo.com/CPS
..in both of them.
Fwiw, the comodo EV Cert Practice Stmt is apparently here..
http://www.comodo.com/repository/EV_CPS_4_JUN_07.pdf
=JeffH
More information about the Observatory
mailing list