[cabfpub] Policy Review Working Group
TShirley at trustwave.com
Fri Oct 10 06:30:36 MST 2014
I'll take section 4.6-4.8 (Certificate renewal, re-key, modification).
From: public-bounces at cabforum.org [mailto:public-bounces at cabforum.org] On Behalf Of Ben Wilson
Sent: Thursday, October 09, 2014 5:25 PM
Subject: [cabfpub] Policy Review Working Group
The Policy Review Working Group is looking for volunteers to take on different sections of a draft that compares current CA/B Forum guidelines with RFC 3647 and similar criteria (WebTrust, ETSI, NIST).
The review items are grouped in the chart below. Please let me know whether you would like to participate in the review of a particular topic, as outlined below.
Time or frequency of publication and Access controls on repositories
3.2 - 3.4
Initial identity validation / Identification and authentication
4.2 - 4.4
Certificate application, issuance and acceptance
Key pair and certificate usage
Certificate renewal, re-key, modification
CRL Issuance Frequency & OCSP
Certificate status services
Key Escrow and Recovery
Audit logging procedures
Key changeover, Compromise, Disaster Recovery, CA Termination
Key pair generation and installation
Private Key Protection, Controls and Other Aspects
Computer security controls
Life cycle technical controls
6.7.1 to 6.7.4
Isolation of Networked Systems to Communications Security
6.7.5 to 6.7.7
Network Monitoring to Penetration Testing
CERTIFICATE, CRL, AND OCSP PROFILES
COMPLIANCE AUDIT AND OTHER ASSESSMENTS
OTHER BUSINESS AND LEGAL MATTERS
This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Public