[cabfpub] [CABFORUM] Re: Ballot 148 - Issuer Field Correction (rev 1)
Doug Beattie
doug.beattie at globalsign.com
Thu Mar 19 18:10:54 UTC 2015
Yea, I took the words that were in section 9.1 before and used them exactly here so as not to make un-necessary changes, but I have no problem taking them out.
Doug
> -----Original Message-----
> From: Peter Bowen [mailto:pzbowen at gmail.com]
> Sent: Thursday, March 19, 2015 1:49 PM
> To: Doug Beattie; Ryan Sleevi
> Cc: public at cabforum.org
> Subject: [CABFORUM] Re: [cabfpub] Ballot 148 - Issuer Field Correction (rev 1)
>
> On Thu, Mar 19, 2015 at 10:39 AM, Doug Beattie
> <doug.beattie at globalsign.com> wrote:
> > I’m reposting Ballot 148 with new review and voting periods to address
> > recent comments.
> >
> > - organizationName (OID 2.5.4.10). This field MUST contain the name
> > (or abbreviation thereof), trademark, or other meaningful identifier
> > for the CA, provided that they accurately identify the CA. The field
> > MUST NOT contain exclusively a generic designation such as “CA1”.
>
> Doug,
>
> In the spirit of avoiding things that are ambiguous, I would suggest avoiding the
> defining this further than "MUST not be empty" and "MUST NOT contain
> exclusively a generic designation such as “CA1”.
>
> There are several CAs who appear to have issued Subordinate CA certificates
> where the Organization Name attribute is that of a partner/reseller yet the
> Subordinate CA is included in the CA's CPS and audit. I personally do not find this
> an unreasonable practice, but I think an auditor could reasonably argue that
> "XYZ Corp" is not a meaningful identifier for "Example, Inc" CA.
>
> Thanks,
> Peter
More information about the Public
mailing list