Mozilla plans to ask all certificate authorities to revoke sub-CA certificates that could be used by companies to inspect SSL-encrypted traffic for domain names they don’t control. The plan is Mozilla’s response to Trustwave’s claim that the use of such certificates for SSL traffic management within corporate networks is a common practice. A grace period of two or three months is being considered, Mozilla’s Kathleen Wilson says. After that, anyone caught with such a certificate would have their root key removed from Mozilla’s products and all certificates they ever signed would result in an error.”]