[cabfpub] On the use of misuse - and the necessity to remove it

Ryan Sleevi sleevi at google.com
Fri Jun 8 11:52:51 UTC 2018

Could you expand a bit more?

One of the concerns raised by multiple browsers, but particularly
articulated by Wayne, was that CAs are documenting things all over, and so
it's difficult for consumers to know where it will be documented. Do you
currently document it, and in a different section?

It was an explicit goal of Ballot 217 to ensure that CAs are following the
3647 format, and as Moudrick highlighted, that's already got a dedicated
section for that purpose. If you did want to place information in
additional places, that's certainly possible - but it means your example
1.4.2 would say something like

"Certificates issued under this policy shall not be used for hazardous
environments requiring fail-safe controls, including without limitation,
the design, construction, maintenance or operation of nuclear facilities,
aircraft navigation or communication systems, air traffic control, and life
support or weapons systems. Further, certificates issued under this policy
may not be used for the purposes defined in Appendix A"

Does that sound... reasonable?

On Fri, Jun 8, 2018 at 7:37 AM, Adriano Santoni <
adriano.santoni at staff.aruba.it> wrote:

> I'd prefer not to restrict the sections of the CA's CP/CPS where the
> definition of "misuse" (or "misused") is to be found:
> (future)
> "4. The CA obtains evidence that the Certificate was misused, as defined
> by the CA's CP/CPS;"
> Il 08/06/2018 12:54, Ryan Sleevi ha scritto:
> (future)
> "4. The CA obtains evidence that the Certificate was misused, as defined
> by Section 1.4.1 and 1.4.2 of the CA's CP/CPS;"
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20180608/c1ec1444/attachment-0003.html>

More information about the Public mailing list