Hey Tim
GlobalSign has compiled a list of bad-actor-indicators (following the review of many certificate problem reports) that may be useful for this - although the public mailing list may not be the right place for obvious reasons. Kind regards, Eva From: Cscwg-public <[email protected]> On Behalf Of Ian McMillan via Cscwg-public Sent: 30 May 2024 22:06 To: Tim Hollebeek <[email protected]>; [email protected] Subject: Re: [Cscwg-public] EV requirements simplification effort Hi Tim, Please include myself in this effort. Thanks, Ian _____ From: Cscwg-public <[email protected]> on behalf of Tim Hollebeek via Cscwg-public <[email protected]> Sent: Thursday, May 30, 2024 5:48 AM To: [email protected] <[email protected]> Subject: [EXTERNAL] [Cscwg-public] EV requirements simplification effort Hello, At the Bergamo F2F code signing discussion, I proposed an effort to go through the EV requirements, and determine which of the requirements are useful for code signing in the modern world. As the next step, it was proposed that a group of CAs would get together, go through the requirements, and come up with a proposal for a new version of EV that: 1. Keeps the strength of EV against relevant attacks, but 2. eliminates unnecessary requirements that do not provide security value. If you would like to be part of the effort, please respond to this email. -Tim
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Cscwg-public mailing list [email protected] https://lists.cabforum.org/mailman/listinfo/cscwg-public
