[cabfpub] Revised document for Ballot 89 - Adopt Requirements for the Processing of EV SSL Certificates v.2

Jeremy Rowley jeremy.rowley at digicert.com
Tue Oct 16 22:06:45 UTC 2012


For the record, DigiCert has similar policies in place.  Our policy against
certificates being used on sites engaged in illegal conduct is documented in
both our customer agreements and CPS.

Jeremy

-----Original Message-----
From: public-bounces at cabforum.org [mailto:public-bounces at cabforum.org] On
Behalf Of Rick Andrews
Sent: Tuesday, October 16, 2012 4:00 PM
To: Gervase Markham
Cc: public at cabforum.org
Subject: Re: [cabfpub] Revised document for Ballot 89 - Adopt Requirements
for the Processing of EV SSL Certificates v.2

> Are CAs (or is Symantec) now taking the position that they revoke 
> certs which contain correct identity information but are being used on 
> sites which engage in illegal activity? What definition of "illegal" 
> are you using?

Gerv, yes, Symantec does revoke certs that we believe are being used
fraudulently. I can't give you the definition of "illegal" that we use. It
generally starts with our Threat Intel team, which feeds the info to a
relevant Product Manager who makes the call after considering impact to the
customer and others. It's more commonly done for code signing certs, but
occasionally for SSL certs.

-Rick
_______________________________________________
Public mailing list
Public at cabforum.org
https://cabforum.org/mailman/listinfo/public




More information about the Public mailing list