Microsoft votes YES
From: Public [mailto:public-boun...@cabforum.org] On Behalf Of Tim Hollebeek
via Public
Sent: Monday, January 29, 2018 1:52 PM
To: CA/Browser Forum Public Discussion List
Subject: [cabfpub] Voting begins: Ballot 218 version 2
I'm highly skeptical that
TrustCor votes YES on Ballot 218.
Neil
> On 30 Jan 2018, at 17:03, Rich Smith via Public wrote:
>
> Comodo CA votes YES on Ballot 218.
___
Public mailing list
Public@cabforum.org
https://cabforum.org/mailman/listinfo/public
Comodo CA votes YES on Ballot 218.
From: Public [mailto:public-boun...@cabforum.org] On Behalf Of Tim Hollebeek
via Public
Sent: Monday, January 29, 2018 3:52 PM
To: CA/Browser Forum Public Discussion List
Subject: [cabfpub] Voting begins: Ballot 218 version 2
I'm
On Tue, Jan 30, 2018 at 9:37 AM, Kirk Hall via Public
wrote:
> Tim – your argument is “who knows if any certs have been misissued under
> Method 1” could apply to all other methods. That’s not an argument that
> there HAVE been misissued certs. We have been using the
> > Your second statement – that Symantec issued lots of certificates
> > using Method 1 that DigiCert would never have issued – seems to imply
> > you have found misissuance by Symantec.
>
> No, it doesn't. It means that the level of assurance that it went to the right
> person is not high
Hi Kirk,
On 30/01/18 14:37, Kirk Hall via Public wrote:
> Tim – your argument is “who knows if any certs have been misissued under
> Method 1” could apply to all other methods. That’s not an argument that
> there HAVE been misissued certs. We have been using the method for many
> years at
Entrust votes no. There have been no cases of misissuance using Method 1 over
roughly 20 years, and this will have a great impact on enterprise website
owners and CAs around the world. We will continue working with others to
clarify the requirements of Method 1 and bring them back in a new
Tim - your argument is "who knows if any certs have been misissued under
Method 1" could apply to all other methods. That's not an argument that
there HAVE been misissued certs. We have been using the method for many
years at multiple companies for many major enterprises (who would certainly
be
> There have been no cases of misissuance using Method 1 over roughly 20
years
You guys have been told repeatedly that you have no evidence this statement
is true. You need to stop saying it.
The truth is it is extremely hard to "misissue" a certificate using method
1, precisely because