Remove the Email (S/MIME) trust bit for ePKI Root Certification Authority
This bug tracks a request by Chunghwa Telecom to remove the remaining Email (S/MIME) trust bit for its ePKI Root Certification Authority root certificate. The bug states that Websites (TLS) trust for this root was previously removed via Bug 1974299, and that Mozilla currently recognizes the root only for Email (S/MIME). The request is tied to Chunghwa Telecom’s PKI transition, including discontinuing S/MIME issuance under this hierarchy and revoking subordinate CAs previously used for S/MIME issuance. If approved, the action would leave the root with no remaining Mozilla trust bits. The bug also notes that a corresponding bug would be filed in the NSS :: CA Certificates Code component to implement the change, and that Bug 2052097 was filed for that purpose.
- Mozilla opened a bug to remove the Email (S/MIME) trust bit for Chunghwa Telecom’s ePKI Root Certification Authority root.
- A corresponding implementation bug was filed in NSS :: CA Certificates Code (Bug 2052097).
- bwilson@mozilla.com — Opened the bug describing the proposed removal of the Email (S/MIME) trust bit for ePKI Root Certification Authority and noting TLS trust was previously removed via Bug 1974299.
- bwilson@mozilla.com — Noted that Bug 2052097 was filed in NSS :: CA Certificates Code to implement the requested change.