[Smcwg-public] [External Sender] Draft proposal to add eIDAS QES as vetting evidence for individual

Adriano Santoni adriano.santoni at staff.aruba.it
Mon Apr 29 14:26:54 UTC 2024 

For me it's fine to start inserting the eIDAS scheme.

I understand Judith Spencer's concerns, however it is clear that here we 
are working in an "additive" way, so nothing prevents further schemes 
from being introduced later, as soon as there is consensus. Even now, if 
we are aware of at least one other non-European scheme (e.g. Asian, 
American, etc.) which guarantees a reliability more or less comparable 
with that of eIDAS as to the identification of individual applicants, I 
wouldn't see any problem in including that as well. First, perhaps, it 
would be good to share sufficient information on this other possible 
scheme, and perhaps see some examples of certificates issued under it, 
to be able to judge its presumed equivalence.

Furthermore, I think it would make sense to also accept a digital 
signature made with an S/MIME IV certificate, because evidently this 
would be a sufficiently reliable way of individual identification; in 
practice, in order to obtain a new S/MIME IV certificate, e.g. for 
renewal purposes, or perhaps for a different email address, I think the 
CA should be able to accept a signature made with an S/MIME IV 
certificate already in the applicant's possession, compliant with the 
SMBRs, not expired and not revoked. To this end, I would say that a 
signed S/MIME message could be fine... what do you (all) think?

Adriano


Il 25/04/2024 02:06, Stephen Davidson via Smcwg-public ha scritto:
> NOTICE: Pay attention - external email - Sender is 
> 0100018f1292ed72-fe55a679-1082-4cb9-b37a-655a57130dc0-000000 at amazonses.com 
>
>
>
>
> Hello all:
>
> As discussed today, here is draft language for consideration to allow 
> CAs to rely upon signatures created with eIDAS Qualified certificates 
> as evidence supporting validation of individual identity.
>
> https://github.com/srdavidson/QES-SMIME-BR/blob/master/QES-proposal.md
>
> I’d be grateful for feedback on this language.
>
> Best, Stephen
>
>
> _______________________________________________
> Smcwg-public mailing list
> Smcwg-public at cabforum.org
> https://lists.cabforum.org/mailman/listinfo/smcwg-public
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20240429/78c11544/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4620 bytes
Desc: Firma crittografica S/MIME
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20240429/78c11544/attachment.p7s>

More information about the Smcwg-public mailing list