Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Key proof of possession #194

Open
srdavidson opened this issue Nov 30, 2022 · 2 comments
Open

Key proof of possession #194

srdavidson opened this issue Nov 30, 2022 · 2 comments
Labels
Future Version Future version of the S/MIME BR

Comments

@srdavidson
Copy link
Contributor

The SMCWG should discuss options for a "secure process to establish that the entity controlling the email address also controls the public-private key pair."

This is mentioned on the Mozilla GitHub policy issues board - mozilla/pkipolicy#215
@CBonnell and @BenWilson-Mozilla
@srdavidson srdavidson added the enhancement New feature or request label Nov 30, 2022
@RufusJWB
Copy link

Maybe we could combine this with device attestation.

@srdavidson srdavidson added Future Version Future version of the S/MIME BR and removed enhancement New feature or request labels Feb 24, 2024
@srdavidson
Copy link
Contributor Author

New internet-draft "Use of Remote Attestation with Certification Signing Requests" would make this feasible
https://lamps-wg.github.io/csr-attestation/draft-ietf-lamps-csr-attestation.html

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Future Version Future version of the S/MIME BR
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@RufusJWB @srdavidson