[cabfpub] Difference between CA issued DV and DANE certs
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Fri Oct 19 14:26:34 MST 2012
On 10/19/2012 04:50 PM, From Phillip:
> There is in any case a big difference between what the EV guidelines require and what CAs actually do.
Probably not always, but many times.
> The EV criteria are the minimum. But CAs have always gone beyond the minimum. There are many controls that are much easier to employ in practice than define as a requirement.
True - the policies define what we must do - there are implemented
practices which are done as a best effort for example, but which can't
be 100%. No CA wants to fail an audit because of a disclosed practice it
can't enforce 100%. It doesn't mean that it doesn't exist though.
Regards
Signer: Eddy Nigg, COO/CTO
StartCom Ltd. <http://www.startcom.org>
XMPP: startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: Join the Revolution! <http://blog.startcom.org>
Twitter: Follow Me <http://twitter.com/eddy_nigg>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://cabforum.org/pipermail/public/attachments/20121019/4d803e51/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4540 bytes
Desc: S/MIME Cryptographic Signature
Url : http://cabforum.org/pipermail/public/attachments/20121019/4d803e51/attachment.bin
More information about the Public
mailing list