[Smcwg-public] [External Sender] Re: Draft proposal to add eIDAS QES as vetting evidence for individual
Dimitris Zacharopoulos (HARICA)
dzacharo at harica.gr
Thu May 16 11:41:08 UTC 2024
On 16/5/2024 2:35 μ.μ., Adriano Santoni via Smcwg-public wrote:
>
> Dimitris,
>
> Il 16/05/2024 13:26, Dimitris Zacharopoulos (HARICA) via Smcwg-public
> ha scritto:
>> I think it is ok for the same CA to accept a signed (with an existing
>> S/MIME IV Certificate) request for renewal, coming from an existing
>> Subscriber, as long as the existing stored evidence can be re-used
>> according to the rules.
>
> Actually this is exactly what I had in mind: I was implicitly
> referring to an already existing S/MIME IV certificate issued by the
> /same/ CA from which the Applicant is requesting another one.
>
Thanks for clarifying :)
I think this is already allowed in the sense that the CA does not
directly rely on the information in the certificate used to sign the
renewal request, but corroborates with its internal database and
evidence already stored from the initial validation, checks that this
evidence has not expired and issues a new certificate. If during this
process the Applicant wants to add another email address, depending on
the evidence already collected, it may require a new validation that can
be combined with existing ones and result in the additional email in the
new certificate.
I hope this makes sense to all.
Dimitris.
> Adriano
>
>
>
> _______________________________________________
> Smcwg-public mailing list
> Smcwg-public at cabforum.org
> https://lists.cabforum.org/mailman/listinfo/smcwg-public
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20240516/aa3f46a9/attachment.html>
More information about the Smcwg-public
mailing list