[Cscwg-public] Private Key Verification Reuse

Dimitris Zacharopoulos (HARICA) dzacharo at harica.gr
Tue Nov 23 10:10:44 UTC 2021



On 18/11/2021 8:55 μ.μ., Bruce Morton via Cscwg-public wrote:
>
> Could we add the following in CSBR section 11.3?
>
> Methods 4, 5 and 7 of section 16.3.2 may be reused if Subscriber 
> Private Key protection has been validated no more than 13 months prior 
> to issuing the Code Signing Certificate.
>
> An alternative would be to add the sentence to the end of section 16.3.2.
>

My recommendation would be to use one section for all reuse purposes 
(validation and key attestation evidence). When we do the conversion to 
RFC 3647 format, this will land nicely on section 4.2.1.

Dimitris.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20211123/a774da73/attachment.html>


More information about the Cscwg-public mailing list