New Roots, new EV, and a new Public Suffix file
By Yngve Nysæter Pettersenyngve. Wednesday, July 28, 2010 10:43:39 PM
- AffirmTrust: This is a new US-based CA, headed by people that worked at Geotrust before it was acquired by Verisign. Test sites: 1, 2, 3
- GoDaddy: This popular US ISP and CA has added 3 new EV-enabled Roots signed using SHA-256, a more secure signature method. Test sites: 1, 2, 3
- Taiwan CA (TWCA): This a CA is based in Taiwan. Test site
- TrustCenter: This is a German CA that has been in Opera for a while. They have created two new Roots to take over when some of their
older certificates expire in January 2011.
Test sites are not yetTestsites: CA-1 and CA-3.
available (this article will be updated when they are)
- StartCom/StartSSL : This is a CA based in Israel which has gathered
a following. We received quite a few requests to include it, and the wait
is now over. Test site
AffirmTrust, GoDaddy and Taiwan CA were all added at the end of April, but due to problems with some of the test cases this announcement was delayed.
- To improve performance for the Public Suffix handling in upcoming versions, we have created a new file that collects all the specifications into a single file. This does not affect the existing files. The updated distribution (Mozilla Tri-License) version 1.2 is also available from our repository.
The new file is "all.tlds.xml", and it contains a "<tlds>..</tlds>" element containing multiple "<tld>..</tld>" elements. The draft describing the format has not yet been updated with this addition.