Official rules for SSL notaries


This is a nice reading: New, official rules for running a SSL notary have been released by their forum.
http://www.cabforum.org/Baseline_Requirements_V1.pdf

Keep an eye on how high some of the requirements are, i.e. always need two persons to access the root CA key, and never use it to sign client certificates. And *then* notice how they often sneaked in a “SHALL” instead of a “MUST” where it would cost the registrar actual money to implement better processes.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s