[cabfpub] EV Wildcards
Rob Stradling
rob.stradling at comodo.com
Fri Mar 20 07:15:59 MST 2015
On 20/03/15 14:08, Ryan Sleevi wrote:
> On Mar 20, 2015 6:53 AM, "Rob Stradling" wrote:
<snip>
> > Ryan, if EV wildcards become permitted, would you reconsider your
> > view that the 6962-bis name redaction mechanism is not suitable for EV?
>
> As mentioned during the F2F, our concern regarding name redaction was
> indeed related to the inpermissibility of wildcards for EV. So yes, if
> the Forum moved to allow them, we'd be happy to revisit this on Chrome's
> ct-policy list for discussion.
Great. Thanks Ryan.
> That said, on the topic of name redaction, there is nothing preventing
> clients/user agents/relying parties from submitting certificates they
> encounter towards logs, so the benefits of name redaction do need to be
> carefully considered here as to what goals it accomplishes or can
> guarantee.
Sure.
> But that's more of a question for the IETF TRANS wg.
TRANS has already decided that 6962-bis should specify a name redaction
mechanism.
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
More information about the Public
mailing list