[cabfpub] New validation method

Geoff Keating geoffk at apple.com
Tue Oct 24 22:46:05 UTC 2017

> On 24 Oct 2017, at 2:58 pm, Peter Bowen via Public <public at cabforum.org> wrote:
> As ballot 190 is complete and fully effective, it seems like a reasonable time to start considering further validation method.  Amazon proposes the following new method.  As far as I know, this does not overlap with any of the existing methods.
> Registrar challenge validation
> Confirming the Applicant’s control over the request Domain Name by confirming the presence of a Random Value or Request Token in a response from the Domain Name Registrar or Registry received in response to a request containing an Authorization Domain Name.

I like the concept, but can we be a bit more specific than just ‘in response to a request’?  For example, can we say ‘in response to a WHOIS request for the Authorization Domain Name’?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3321 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20171024/c6d1803b/attachment-0003.p7s>

More information about the Public mailing list