[cabfpub] Intermediate certificate names

Eddy Nigg eddy_nigg at startcom.org
Tue Mar 10 16:53:11 UTC 2015

On 03/10/2015 07:01 AM, Jeremy Rowley wrote:
> We've heard that some auditors are interpreting this as a requirement 
> that the CA must be named in each intermediate.  I disagree as calling 
> each of our Intermediates DigiCert Intermediate 1 CA, DigiCert 
> Intermediate 2 CA, etc. is less useful than specifying their intended 
> purpose or intended beneficiary.

One second...the organization field should be always the real CA name 
(Digicert, Inc. or whatever it is). The common name can be used to 
identify for example purpose etc. as I understand. a

For an intermediate CA that is managed by Digicert but in fact 
represents a different entity I would expect to see that company name in 
the organization field and not Digicert's. For intermediate CAs not 
managed by Digicert also.

Signer: 	Eddy Nigg, COO/CTO
	StartCom Ltd. <http://www.startcom.org>
XMPP: 	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: 	Join the Revolution! <http://blog.startcom.org>
Twitter: 	Follow Me <http://twitter.com/eddy_nigg>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150310/b694e007/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4313 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150310/b694e007/attachment-0001.p7s>

More information about the Public mailing list