<div dir="ltr"><div>Mozilla ha published a list of problem reporting mechanisms (mostly email addresses) for all root CAs in our program. It is the first link under 'Information for the Public' at <a href="https://wiki.mozilla.org/CA#Information_for_the_Public">https://wiki.mozilla.org/CA#Information_for_the_Public</a></div><div><br></div><div>Wayne<br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Feb 19, 2018 at 4:05 PM, Kirk Hall via Public <span dir="ltr"><<a href="mailto:public@cabforum.org" target="_blank">public@cabforum.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div link="#0563C1" vlink="#954F72" lang="EN-US">
<div class="m_1381570324702694967WordSection1">
<p class="MsoNormal"><span style="color:#1f497d">John and Peter – this issue has actually come up recently – I think you have a very good idea.
<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:#1f497d"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:#1f497d">We’ll add to our agenda for the next Forum Teleconference call. Thanks.<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:#1f497d"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="color:#1f497d">Kirk<u></u><u></u></span></p>
<p class="MsoNormal"><span style="color:#1f497d"><u></u> <u></u></span></p>
<div>
<div style="border:none;border-top:solid #e1e1e1 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b>From:</b> John LaCour [mailto:<a href="mailto:jal@phishlabs.com" target="_blank">jal@phishlabs.com</a>] <br>
<b>Sent:</b> Monday, February 19, 2018 2:45 PM<br>
<b>To:</b> <a href="mailto:questions@cabforum.org" target="_blank">questions@cabforum.org</a><br>
<b>Cc:</b> <a href="mailto:peter@apwg.org" target="_blank">peter@apwg.org</a><br>
<b>Subject:</b> Directory of abuse reporting contacts for CAs?<u></u><u></u></p>
</div>
</div>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">Dear CA Representative:<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">The CA/Browser Forum’s Baseline Requirements Section 4.9.3 says in part:
<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">“The CA SHALL provide Subscribers, Relying Parties, Application Software Suppliers, and other third parties with clear instructions for reporting suspected Private Key Compromise, Certificate misuse, or other types of fraud, compromise,
misuse, inappropriate conduct, or any other matter related to Certificates. The CA SHALL publicly disclose the instructions through a readily accessible online means.”<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">However, we sometimes find it difficult to instructions on how and where to submit reports to issuing CAs to request certification revocation due to malicious use.
<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">Would it be possible for the Forum and/or the browser community to create a list of reporting email addresses for each CA in the browser root programs, and post the list to an obvious page on the Forum’s website, and maybe also on the
CCADB website (Resources tab)? <u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">If for whatever reason, the Forum decides not to make a consolidated listing available as a public resource, we would be grateful if the CAs would provide this information directly so that we may provide a consolidated list to the anti-phishing
community via the Anti-Phishing Working Group (APWG). <u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">Also, we would like to make you aware of an APWG program, AmDoS (1) , which facilitates the suspension of malicious domain names. The program introduces a vetting program for reporters to submit takedown requests to participating domain
registries. This may potentially be a useful model to facilitate revocation requests between the anti-phishing community and CAs. Better, it is built and working and ready to update for the Forum’s needs.<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">We thank you in advance for your help in this effort. We look forward to collaborating with the Forum soon.
<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">Sincerely,<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText">John LaCour<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText">CTO, PhishLabs<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><a href="mailto:jal@phishlabs.com" target="_blank">jal@phishlabs.com</a><u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">Peter Cassidy<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText">Secretary General, APWG<u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><a href="mailto:pcassidy@apwg.org" target="_blank">pcassidy@apwg.org</a> <u></u>
<u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="m_1381570324702694967MsoPlainText">(1) <a href="https://www.antiphishing.org/apwg-news-center/amdos/" target="_blank">
https://www.antiphishing.org/<wbr>apwg-news-center/amdos/</a> <u></u><u></u></p>
<p class="m_1381570324702694967MsoPlainText"><u></u> <u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">--<u></u><u></u></p>
<p class="MsoNormal">John LaCour<u></u><u></u></p>
<p class="MsoNormal">Founder and Chief Technology Officer<u></u><u></u></p>
<p class="MsoNormal">M: <a href="tel:(415)%20425-5646" value="+14154255646" target="_blank">+1.415.425.5646</a><u></u><u></u></p>
<p class="MsoNormal"><a href="mailto:jal@phishlabs.com" target="_blank">jal@phishlabs.com</a><u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
</div>
</div>
<br>______________________________<wbr>_________________<br>
Public mailing list<br>
<a href="mailto:Public@cabforum.org">Public@cabforum.org</a><br>
<a href="https://cabforum.org/mailman/listinfo/public" rel="noreferrer" target="_blank">https://cabforum.org/mailman/<wbr>listinfo/public</a><br>
<br></blockquote></div><br></div>