[Smcwg-public] Use of the certificateHold CRLreason for leaf certificates

Russ Housley housley at vigilsec.com
Thu Sep 1 19:07:28 UTC 2022


I would strongly prefer that any use of suspension be described in the CP (not the CPS).


> On Sep 1, 2022, at 11:54 AM, Stephen Davidson via Smcwg-public <smcwg-public at cabforum.org> wrote:
> Hello:
> Following active discussion relating to suspension for leaf certificates by the WG, it was agreed to document the use of suspension for the Legacy and Multipurpose certificate generations.
> There were arguments regarding the appropriateness of certificateHold in the context of S/MIME, and its effectiveness in the face of limited client support.
> However, suspension is permitted by some other standards and regulations, and is used by CAs for S/MIME-capable certificates in some regions.
> It is likely that future ballots may further amend these Requirements relating to suspension.
> A draft of the changes may be found at https://github.com/cabforum/smime/commit/347eb1b93e1ac5b2ceb13692ce958b6ebd5af5ff <https://github.com/cabforum/smime/commit/347eb1b93e1ac5b2ceb13692ce958b6ebd5af5ff>
> Regards, Stephen
> _______________________________________________
> Smcwg-public mailing list
> Smcwg-public at cabforum.org <mailto:Smcwg-public at cabforum.org>
> https://lists.cabforum.org/mailman/listinfo/smcwg-public <https://lists.cabforum.org/mailman/listinfo/smcwg-public>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20220901/a8fcc2e4/attachment.html>

More information about the Smcwg-public mailing list