[cabfpub] Voting begins: Ballot 218 version 2
Tim Hollebeek
tim.hollebeek at digicert.com
Thu Feb 1 14:41:17 UTC 2018
You’re right and there is a proposal to do exactly that. It will be discussed on the VWG today if you want to join. We do need a more formal and rigorous evaluation of the risks and vulnerabilities inherent in the use of each validation method.
-Tim
Intuitively, these methods were proved to be the "weakest" among the other methods, even though there are known vulnerabilities for almost all of them (including DNS/routes hijacking, etc). The validation working group should discuss more about the threats of each method (and how to formalize the level of assurance) in case a similar discussion about the other methods is brought forward.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20180201/c38186fc/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4940 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20180201/c38186fc/attachment-0003.p7s>
More information about the Public
mailing list