Hey Tim
GlobalSign has compiled a list of bad-actor-indicators (following the review of many certificate problem reports) that may be useful for this - although the public mailing list may not be the right place for obvious reasons. Kind regards, Eva From: Cscwg-public <cscwg-public-boun...@cabforum.org> On Behalf Of Ian McMillan via Cscwg-public Sent: 30 May 2024 22:06 To: Tim Hollebeek <tim.holleb...@digicert.com>; cscwg-public@cabforum.org Subject: Re: [Cscwg-public] EV requirements simplification effort Hi Tim, Please include myself in this effort. Thanks, Ian _____ From: Cscwg-public <cscwg-public-boun...@cabforum.org> on behalf of Tim Hollebeek via Cscwg-public <cscwg-public@cabforum.org> Sent: Thursday, May 30, 2024 5:48 AM To: cscwg-public@cabforum.org <cscwg-public@cabforum.org> Subject: [EXTERNAL] [Cscwg-public] EV requirements simplification effort Hello, At the Bergamo F2F code signing discussion, I proposed an effort to go through the EV requirements, and determine which of the requirements are useful for code signing in the modern world. As the next step, it was proposed that a group of CAs would get together, go through the requirements, and come up with a proposal for a new version of EV that: 1. Keeps the strength of EV against relevant attacks, but 2. eliminates unnecessary requirements that do not provide security value. If you would like to be part of the effort, please respond to this email. -Tim
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Cscwg-public mailing list Cscwg-public@cabforum.org https://lists.cabforum.org/mailman/listinfo/cscwg-public
