As the “Embed SCT receipts in certificates” feature is almost complete, I had a some questions about the preparation of the next one: “ECDSA Root and Intermediates” with the ETA Q3 2018 according to https://letsencrypt.org/upcoming-features/
Before the generation of the publicly trusted Root and Intermediates, do you plan:
- to publish a draft of the new hierarchy similarly to https://letsencrypt.org/certs/isrg-keys.png from https://letsencrypt.org/certificates/ ?
- to generate a fake hierarchy, so the community can give some feedback about it before the real creation?
- to give access to that fake hierarchy on the staging environment?
Will the new root (or intermediates) be cross signed with “ISRG Root X1” ?
Will the new root (or intermediates) be cross signed with “DST Root CA X3” or another widely trusted root ?
I guess you planned to submit that new root to trust stores?