On Feb 5, 2014, at 7:26 AM, Rob Stradling <[email protected]> wrote:
> Table 1 and Footnote 4 seem a bit confused, wrongly implying that 39-month EV > certs do exist and/or that >39-month non-EV certs don't exist. > > >27 month EV SSL certificates shouldn't exist, as per the EV Guidelines. > > >60 month non-EV SSL certificates shouldn't have been issued by any CA since > >the BRs came into effect. > > >39 month non-EV SSL certificates shouldn't be issued from 1st April 2015, as > >per the BRs. The above seems to be based in the belief that no one than CABForum members issue certificates. It also seems to be based on the idea that no CABForum member will ever not follow the current-at-the-time CABForum rules. The CT work seems to be based on the idea that other CAs exist, and even that CABForum members might not follow the CABForum rules. Those seem like good assumptions to me. --Paul Hoffman _______________________________________________ therightkey mailing list [email protected] https://www.ietf.org/mailman/listinfo/therightkey
