[cabf_validation] Random Value over DNS or .well-known

Jeremy Rowley jeremy.rowley at digicert.com
Thu May 19 08:37:14 MST 2016

There was discussion on the call today about the following language:


If a Random Value is used, the CA or Delegated Third Party SHALL provide a
Random Value unique to the certificate request and SHALL not use the Random
Value after the longer of (i) 30 days or (ii) if the Applicant submitted the
certificate request, the timeframe permitted for reuse of validated
information relevant to the certificate (such as in Section 3.3.1 of these
Guidelines or Section 11.14.3 of the EV Guidelines). 


We couldn't recall what this is trying to accomplish or why it does not
cover request tokens as well. Any thoughts? 



-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://cabforum.org/pipermail/validation/attachments/20160519/5ca4b584/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4964 bytes
Desc: not available
Url : https://cabforum.org/pipermail/validation/attachments/20160519/5ca4b584/attachment.bin 

More information about the Validation mailing list