[Cscwg-public] FW: clarificatio questio of BR for Codesign
Dean Coclin
dean.coclin at digicert.com
Wed Oct 21 14:13:48 MST 2020
For discussion on next call...
-----Original Message-----
From: 伊藤 忠彦 <tadahi-ito at secom.co.jp>
Sent: Wednesday, October 21, 2020 3:34 AM
To: Dean Coclin <dean.coclin at digicert.com>
Subject: RE: clarificatio questio of BR for Codesign
Hi Dean
I add this comment just in case.
I understand as all of those clarification questions are "True".
Regards Tadahiko Ito
-----Original Message-----
From: 伊藤 忠彦
Sent: Wednesday, October 21, 2020 12:30 AM
To: Dean Coclin (dean.coclin at digicert.com)
Subject: clarificatio questio of BR for Codesign
Hi Dean
This is Tadahiko from SECOM.
I have clarificatino questions from Japanese Timestamp Business Forum to
CABF CSCWG about BR for Code sign.
They want me to ask CSCWG, so I am sending you. If there were anyone you
thinks you should forward this e-mail, please forward this e-mail.
I believe there is not any ambiguity, but they think there are some, so let
me ask clarification questions about BR for code sign.(they want not only my
comments, but also acknowledgement from CS WG.)
Are following statements (1) to (3) all True?
1)on Appendix A (2) of BR for Code sign, it says it is for "Timestamp Root,
Subordinate CA, and Timestamp Certificates".
"Timestamp Certificates" include "TSA certificates (Defined in RFC3161)"
2)on Appendix A (3), It only say about hash, but not for RSA key length.
It is only because requirement for RSA key length is defined in (2), so
there is not anything to say about RSA key.
Hence, "signed value" which is signed by TSA certificate to Timestamp token
need to be more than 3072 bits.
(3) Appendix A (3) is only for "The digest algorithms used to sign Timestamp
tokens ", so (for example) some IDs which is derived with sha1 and written
inside of timestamp token is not scope of that requirement.
Regards Tadahiko Ito
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4916 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20201021/736f9ab9/attachment.p7s>
More information about the Cscwg-public
mailing list