<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<br>
On 05/17/2012 09:34 PM, From Tim Moses:
<blockquote
cite="mid:5B68A271B9C97046963CB6A5B8D6F62C0236E0@SOTTEXCH10.corp.ad.entrust.com"
type="cite">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<meta name="Generator" content="Microsoft Word 12 (filtered
medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
p.line874, li.line874, div.line874
{mso-style-name:line874;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.line867, li.line867, div.line867
{mso-style-name:line867;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.line862, li.line862, div.line862
{mso-style-name:line862;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
span.apple-converted-space
{mso-style-name:apple-converted-space;}
.MsoChpDefault
{mso-style-type:export-only;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="WordSection1"><span
style="font-size:13.0pt;font-family:"Arial","sans-serif";color:black"><o:p></o:p></span>
<p class="line867" style="background:white;orphans:
2;text-align:-webkit-auto;widows: 2;-webkit-text-size-adjust:
auto;-webkit-text-stroke-width: 0px;word-spacing:0px">
<em><span
style="font-size:13.0pt;font-family:"Arial","sans-serif";color:black">D.
Replace Section 11.3 of the Baseline Requirements with the
following:</span></em><span
style="font-size:13.0pt;font-family:"Arial","sans-serif";color:black"><o:p></o:p></span></p>
<p class="line862" style="background:white;orphans:
2;text-align:-webkit-auto;widows: 2;-webkit-text-size-adjust:
auto;-webkit-text-stroke-width: 0px;word-spacing:0px">
<span
style="font-size:13.0pt;font-family:"Arial","sans-serif";color:black">"<strong><span
style="font-family:"Arial","sans-serif"">11.3 Age of
Certificate Data</span></strong><o:p></o:p></span></p>
<p class="line874" style="background: none repeat scroll 0% 0%
white; orphans: 2; widows: 2; word-spacing: 0px;">
<span style="font-size: 13pt; font-family:
"Arial","sans-serif"; color: black;">Section
9.4 limits the validity period of Subscriber Certificates.
The CA MAY use the documents and data provided in Section 11
to verify certificate information, provided that the CA
obtained the data or document from a source specified under
Section 11 no more than thirty-nine (39) months prior to
issuing the certificate.”</span></p>
</div>
</blockquote>
<br>
<br>
Actually there might be a problem with this one and the original
isn't any better. IIRC the 39 month were used in order to allow
re-issuance of an existing certificate, but do we really want to
rely on data that has been obtained more than three years ago for a
certificate that will be valid for another years, total more than
six years?<br>
<br>
Can this be clarified?<br>
<br>
<br>
<div class="moz-signature">
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td colspan="2">Regards </td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
<tr>
<td>Signer: </td>
<td>Eddy Nigg, COO/CTO</td>
</tr>
<tr>
<td> </td>
<td><a href="http://www.startcom.org">StartCom Ltd.</a></td>
</tr>
<tr>
<td>XMPP: </td>
<td><a href="xmpp:startcom@startcom.org">startcom@startcom.org</a></td>
</tr>
<tr>
<td>Blog: </td>
<td><a href="http://blog.startcom.org">Join the Revolution!</a></td>
</tr>
<tr>
<td>Twitter: </td>
<td><a href="http://twitter.com/eddy_nigg">Follow Me</a></td>
</tr>
<tr>
<td colspan="2"> </td>
</tr>
</tbody>
</table>
</div>
<br>
</body>
</html>