[Cscwg-public] Proposed Signing Service, High Risk and Timestamp Changes

Bruce Morton Bruce.Morton at entrust.com
Fri Jul 21 15:54:57 UTC 2023 

Based on the discussions we had at the June F2F, I have taken the opportunity to propose markups to derive Signing Service, High Risk and Timestamping ballots.

The base text is from the CSC-19 version of the CSBRs. There may be some conflicting markups or markups.


  *   Signing Service - based on the former proposal, plus updates based on the discussions
  *   High Risk - Removal of high risk and takeover attack, plus removed Subscriber key generation methods prior to 1 June 2023 and the text about delivering a software based private key. Also propose removing the "any other method" text.
  *   Timestamping - Maintain allowing 15 month private key usage period and 135 month validity period, but requiring private keys to be destroyed within 18 months if the timestamp certificate was valid for more than 15 months. Stating that the HSM supporting the Time-stamp CA must be offline. Stating that the TSA must reject SHA-1 signed timestamp requests

Hoping this will help to clean up this text which we have been discussing for a period of time. These items are on the agenda for next week's meeting.


Thanks, Bruce.
Any email and files/attachments transmitted with it are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20230721/aa687086/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CSBR 3.3.0 plus High Risk.docx
Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document
Size: 114746 bytes
Desc: CSBR 3.3.0 plus High Risk.docx
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20230721/aa687086/attachment-0003.docx>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CSBR 3.3.0 plus TSA.docx
Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document
Size: 112267 bytes
Desc: CSBR 3.3.0 plus TSA.docx
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20230721/aa687086/attachment-0004.docx>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CSBR 3.3.0 plus Signing Service.docx
Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document
Size: 118799 bytes
Desc: CSBR 3.3.0 plus Signing Service.docx
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20230721/aa687086/attachment-0005.docx>

More information about the Cscwg-public mailing list