<html>

  <head>

    <meta http-equiv="Content-Type" content="text/html;

      charset=windows-1252">

  </head>

  <body>

    <p><font face="Calibri">All,</font></p>

    <p>as agreed during the last CSWG call, I am attaching to this post

      a first attempt to revise CSBR §16.3 aimed at clarifyng what kind

      of CC certifications can reasonably be considered acceptable of a

      hardware crypto module for code signing (by the Subscriber).</p>

    <p>I cannot help but observe, however, that the third option

      (bullet) in §16.3, although later on is "not recommended", is

      still allowed although antithetical to the second. Basically, this

      is saying: "you must use a certified device, but not necessarily".

      From a logical point of view, it seems to me that it makes no

      sense. I suppose there is a rationale, probably discussed a long

      time ago ...<br>

    </p>

    <p>Regards</p>

    <p>Adriano</p>

    <p><br>

    </p>

    <div class="moz-cite-prefix">Il 14/04/2021 22:08, Bruce Morton via

      Cscwg-public ha scritto:<br>

    </div>

    <blockquote type="cite"

cite="mid:01000178d2002b3c-ce36f3c2-c273-4e71-8213-e07814efd27b-000000@email.amazonses.com">

      <meta http-equiv="Content-Type" content="text/html;

        charset=windows-1252">

      <meta name="Generator" content="Microsoft Word 15 (filtered

        medium)">

      <style>@font-face

        {font-family:"Cambria Math";

        panose-1:2 4 5 3 5 4 6 3 2 4;}@font-face

        {font-family:DengXian;

        panose-1:2 1 6 0 3 1 1 1 1 1;}@font-face

        {font-family:Calibri;

        panose-1:2 15 5 2 2 2 4 3 2 4;}@font-face

        {font-family:"\@DengXian";

        panose-1:2 1 6 0 3 1 1 1 1 1;}p.MsoNormal, li.MsoNormal, div.MsoNormal

        {margin:0in;

        font-size:11.0pt;

        font-family:"Calibri",sans-serif;}p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph

        {mso-style-priority:34;

        margin-top:0in;

        margin-right:0in;

        margin-bottom:0in;

        margin-left:.5in;

        font-size:11.0pt;

        font-family:"Calibri",sans-serif;}span.EmailStyle20

        {mso-style-type:personal-reply;

        font-family:"Calibri",sans-serif;

        color:windowtext;}.MsoChpDefault

        {mso-style-type:export-only;

        font-size:10.0pt;}div.WordSection1

        {page:WordSection1;}ol

        {margin-bottom:0in;}ul

        {margin-bottom:0in;}</style><!--[if gte mso 9]><xml>

<o:shapedefaults v:ext="edit" spidmax="1026" />

</xml><![endif]--><!--[if gte mso 9]><xml>

<o:shapelayout v:ext="edit">

<o:idmap v:ext="edit" data="1" />

</o:shapelayout></xml><![endif]-->

      <div class="WordSection1">

        <p class="MsoNormal">MINUTE TAKER: <b>??</b><o:p></o:p></p>

        <ol style="margin-top:0in" type="1" start="1">

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Roll Call<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Antitrust

            statement<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Approval of

            prior meeting minutes (8 April 2021)<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Cross-sign

            Roots (Corey)<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Certificate

            Policy OID for Time-stamping (Bruce)<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Common

            Criteria requirement – update required for CSBRs?<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">CSCWG-6

            ballot -  status/questions (Ian)

            <o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Clean-up

            ballot – status (Bruce) – SAN, CRL, FIPS 140-<b>2</b>,

            Root/SubCA Key size, Cross-certificate, TS SHA-1,

            Interoperability verification<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Any other

            business<o:p></o:p></li>

          <li class="MsoListParagraph"

            style="margin-left:0in;mso-list:l1 level1 lfo3">Next Meeting

            Apr 22<sup>nd</sup> <o:p></o:p></li>

        </ol>

        <p class="MsoNormal"><o:p> </o:p></p>

        <p class="MsoNormal"><b><o:p> </o:p></b></p>

        <p class="MsoNormal"><b>Bruce.<o:p></o:p></b></p>

        <p class="MsoNormal"><o:p> </o:p></p>

      </div>

      <br>

      <fieldset class="mimeAttachmentHeader"></fieldset>

      <pre class="moz-quote-pre" wrap="">_______________________________________________

Cscwg-public mailing list

<a class="moz-txt-link-abbreviated" href="mailto:Cscwg-public@cabforum.org">Cscwg-public@cabforum.org</a>

<a class="moz-txt-link-freetext" href="https://lists.cabforum.org/mailman/listinfo/cscwg-public">https://lists.cabforum.org/mailman/listinfo/cscwg-public</a>

</pre>

    </blockquote>

  </body>

</html>