[cabfpub] Multiple active certs for same key and same subject
Rick Andrews
Rick_Andrews at symantec.com
Thu Dec 3 10:24:44 MST 2015
Adriano, our policy is to allow two certs for the same public key and same
subject with different issuance dates if the newer certificate is enrolled
within the 90-day renewal window of the older certificate.
-Rick
From: public-bounces at cabforum.org [mailto:public-bounces at cabforum.org] On
Behalf Of Adriano Santoni
Sent: Thursday, December 03, 2015 12:35 AM
To: CAB Forum
Subject: [cabfpub] Multiple active certs for same key and same subject
Dear all,
It has been brought to our attention the case of a customer who claims to be
common practice, for trusted CAs, to happily issue multiple certificates for
the same public key and same subject, at issuance dates such that two or
more of those certificates are concurrently active at the same time. I would
like to hear opinions on that: whether it is in fact a common practice or
not, and the arguments for and against such practice.
Adriano
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://cabforum.org/pipermail/public/attachments/20151203/5e3455eb/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5749 bytes
Desc: not available
Url : https://cabforum.org/pipermail/public/attachments/20151203/5e3455eb/attachment.bin
More information about the Public
mailing list