[Smcwg-public] Same email addresses in S/MIME certs with different, and unaffiliated Subjects

[Adriano Santoni]

Hi all,

there is another aspect about which I have some doubts; I apologize if 
this has already been discussed previously and I missed the discussion.

The same mailbox can very well (nothing prevents it) be accessible by 
two different subjects A and B who have nothing to do with each other 
(that is, are not affiliated). There are valid and understandable 
reasons why this situation occurs, in practice.

But, consequently, if the validation of the mailbox is done with the 
email-based method, S/MIME certificates can be issued which contain the 
same email address but completely different and unaffiliated Subjects 
(respectively A and B).

I understand that this is allowed by the S/MIME BR, if I'm not mistaken, 
and I wonder if this is expected and accepted, or it would be (have 
been) better avoided.....

Any comments welcome!

Adriano

ACTALIS S.p.A.

PS: I am aware that similar situations can also occur with TLS certificates.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20230921/f707a4d1/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4461 bytes
Desc: Firma crittografica S/MIME
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20230921/f707a4d1/attachment-0001.p7s>