[cabfpub] Applicability of BRs to Client Authentication certificates

Ryan Sleevi sleevi at google.com
Thu Apr 12 10:54:00 MST 2018


On Thu, Apr 12, 2018 at 1:45 PM, Jeff Ward <jward at bdo.com> wrote:

> If 7.1.2.3.f is ignored, it is less confusing, but there is still
> potential ambiguity as to what ‘authenticating a server accessible through
> the Internet’ means. It would be best if the BRs clearly specified the
> technical characteristics of identifying a certificate that is ‘in-scope’.
>

In that regard, I think we're in violent agreement. Root Programs have
undertaken this to some extent, but it would be good to revisit
clarification, hopefully now that more CAs are aware of the problems posed.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/public/attachments/20180412/af608745/attachment.html>


More information about the Public mailing list