[cabfpub] EV policy Id
Ben Wilson
ben at digicert.com
Mon Sep 16 10:32:24 MST 2013
On 16-Sept-2013, Chema López González <clopez at firmaprofesional.com> wrote,
>
>Wouldn't it be easier if BSR and EVR were in fact a Certificate Policy and
then, each
>Certification Services Provider (CSP), through its Certification Practices
Statement (CPS)
>demonstrated than they fulfil the Policy Requirements so the SSL
certificate could use this
>OID?
>
>Here in Spain we have hundreds of OIDs from different CSP and it is a real
nightmare trying
>to mange it. I wrote about it
(http://isigmaglobal.com/2012/05/18/growing-certificate-policies-cp/)
>more than a year ago ... but things are getting worst. Do you think it is
sensible that each CSP
>in the world need to use its own OID to issue certificates that MUST fulfil
the same >requirements worldwide?
>
>Best regards,
>
>Chema.
>
Chema,
That is a good idea. It would be good to re-write both guidelines into a
single CP in RFC3647 format and then include all of the CABF OIDs in section
1.2 (policy identification). Maybe when NIST releases its next version of
the reference CP we can take a look at doing that.
Ben
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://cabforum.org/pipermail/public/attachments/20130916/97803a1b/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5453 bytes
Desc: not available
Url : https://cabforum.org/pipermail/public/attachments/20130916/97803a1b/attachment.bin
More information about the Public
mailing list