[Crm-sig] How to certify CRM compatibility, URGENT PLEASE VOTE
Christian-Emil Ore
c.e.s.ore at edd.uio.no
Tue Nov 4 23:46:51 EET 2008
I vote for the second alternative (C)
Chritian-Emil
On 04.11.2008 11:45, martin wrote:
> Dear All,
>
> The current, well received text about CRM compatibility we are preparing to propose as ISO
> amendment, contains the following last phrase, which caused comments on what the certification procedure will be:
>
> A) The provider should be able to demonstrate the claim with suitable test data. A third party should be able to verify the claim with
> suitable test data.
>
> One alternative is this:
> B)
> The provider should be able to demonstrate the claim with suitable test data and the grant of a certificate by a certification authority
> (CA). A trusted third party recognised as a CA in this practice area, should be able to verify the credentials of the provider applying
> for such certificate and thus, of its claim with suitable test data,before issuing the certificate so that the users can trust the
> information in the CA certificates.
>
> In any case, the provider should be able to demonstrate its claim according to certain procedures included in any applicable certificate
> practice related statement and must also comply with any applicable certification policies of the respective CA.
>
> Second alternative:
> C)
> The provider should be able to demonstrate the claim with suitable test data. The provider should be able to demonstrate its claim according
> to certain procedures included in any applicable certificate practice related statement.
> The provider should either make evidence of these procedures publicly available, so that any third party should be able to verify the claim
> with suitable test data, or acquire a certificate by a certification authority (CA). A trusted third party recognised as a CA in this
> practice area, should be able to verify the credentials of the provider applying for such certificate and thus, of its claim with suitable
> test data, before issuing the certificate so that the users can trust the information in the CA certificates.
>
> Please vote on these alternatives until Thursday morning. Reply either to crm-sig or to martin at ics.forth.gr, in case you would not like your
> vote to become public.
>
> Best,
>
> Martin
>
More information about the Crm-sig
mailing list