Hi Moudrick, As with the BRs, only 411-1 was added. I think in a previous F2F, it was mentioned that some CAs that don't issue ssl/tls certificates, still want to be audited against the NSRs and the previous ETSI TS standards. That's why it is inclusive.
IMO, adding 411-2 doesn't offer much because it is based on 411-1 anyway, and 411-1 describes the core CA security operations. DZ. -----Original Message----- From: "Moudrick M. Dadashov via Public" <[email protected]> To: Ben Wilson <[email protected]>, CA/Browser Forum Public Discussion List <[email protected]> Sent: Sun, 13 Aug 2017 6:49 Subject: Re: [cabfpub] Ballot 210: Misc. Changes to the Network and Certificate System Security Requirements Hi Ben, should we replace ETSI TS 101 456 and ETSI TS 102 042 with ETSI EN 319 411-2 and ETSI EN 319 411-3? (see https://cabforum.org/etsi/#Qualified-Certificates---EN-319-411-2-replaces-TS-101-456). Thanks, M.D. On 8/13/2017 6:30 AM, Ben Wilson via Public wrote: > ETSI TS 101 456
_______________________________________________ Public mailing list [email protected] https://cabforum.org/mailman/listinfo/public
