[cabfpub] [cabfquest] Question about reissuance regulations

Eddy Nigg eddy_nigg at startcom.org
Mon Jan 5 22:36:08 UTC 2015


On 01/06/2015 12:28 AM, Jeremy Rowley wrote:
>
> BRs say once every 39 months.  So does the Mozilla policy. 13 months 
> is for EV.
>

Very bad - would there be supporters for a ballot to change that? 
Obviously a domain name might not be even registered and existing 
anymore after one year, not speaking about actually controlling it.

Obviously a certificate already exists under those circumstances for any 
of those domain names, but when issuing a new certificate, I believe 
some due diligence should be required.

And what about identification of subscribers? Assuming a subscriber 
claims to have lost the private key, a new public key will have to used. 
How do CA identify said subscriber and his/her authorization?

-- 
Regards
Signer: 	Eddy Nigg, COO/CTO
	StartCom Ltd. <http://www.startcom.org>
XMPP: 	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: 	Join the Revolution! <http://blog.startcom.org>
Twitter: 	Follow Me <http://twitter.com/eddy_nigg>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150106/5464733a/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4313 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150106/5464733a/attachment-0001.p7s>


More information about the Public mailing list