[cabfpub] FW: FW: downgrade DV UI RE: OIDs for DV and OV

Dean Coclin Dean_Coclin at symantec.com
Mon Nov 10 12:57:59 MST 2014


Re-posting to the list by permission of the author...

-----Original Message-----
From: John Nagle [mailto:nagle at sitetruth.com] 
Sent: Friday, November 07, 2014 12:07 AM
To: Dean Coclin
Subject: Re: [cabfpub] FW: downgrade DV UI RE: OIDs for DV and OV

    The significant benefit of an EV certificate is a stronger financial
guarantee made by the CA to the relying party.  Here are Symantec's
guaranties:

http://www.symantec.com/content/en/us/about/media/repository/stn-cp.pdf

Table 9 - Class Liability Caps
Class 1 One Hundred U.S. Dollars ($ 100.00 US) Class 2 Five Thousand U.S.
Dollars ($ 5,000.00 US) Class 3 One Hundred Thousand U.S. Dollars ($
100,000.00 US)

These classes seem to correspond to DV, OV, and EV certs.
(Task for CA/Browser Forum - standardize that terminology).
That's the real difference between OV and EV.  OV should be considered the
minimum for submitting a credit card number.
That's the message to get across to the end user via the browser.

It's also a marketing point that the CA industry is not making.

				John Nagle
				SiteTruth

(feel free to repost this to the list.)



On 11/05/2014 11:35 AM, Dean Coclin wrote:
> Reposting to the list (with permission of the author)...
>
>> -----Original Message-----
>> From: Matt Palmer [mailto:mpalmer at hezmatt.org]
>> Sent: Wednesday, November 05, 2014 4:17 PM
>> To: Dean Coclin
>> Subject: Re: downgrade DV UI RE: OIDs for DV and OV
>>
>> [Replying privately, since I'm not privileged enough to post to the 
>> list]
>>
>> On Tue, Nov 04, 2014 at 06:07:17PM -0800, Dean Coclin wrote:
>>> More specifically, is DV a sufficient use case for the majority of 
>>> Internet e-commerce?
>>
>> No, it isn't.  However, Internet e-commerce is not the use case for 
>> the majority of HTTPS traffic, let alone the majority of 
>> communication on the Internet which would benefit from being
TLS-protected.
>>
>> - Matt
>>
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6130 bytes
Desc: not available
Url : https://cabforum.org/pipermail/public/attachments/20141110/65436f0f/attachment.bin 


More information about the Public mailing list