FESA (the Forum of European Supervisory Authorities) has published a whitepaper discussing the use of automation (such as ACME and ARI) for Qualified TLS (aka Qualified Web Authentication Certificates or QWACs).
The paper seeks to "genericize" terminology for desired automation features, and suggests security configurations and controls that should be adopted by CAs to fulfil the requirements of eIDAS when deploying automation for QWACs. https://www.fesa.eu/public-documents/FESA%20Position%20Paper%20on%20QWACs-final.pdf
_______________________________________________ Servercert-wg mailing list [email protected] https://lists.cabforum.org/mailman/listinfo/servercert-wg
