United States [
Feedback
Dated March 31, 2004
(Typographical and formatting changes have been omitted)
1. Section 1.1.2.3.3- VeriSign Managed PKI Key Management Service
Updated description of VeriSign Managed PKI Key Management Service.
2. Section 1.3.4 - Suitable Applications
Updated to include a recommendation against using Intermediate CAs as trust points for signed code and applications.
3. Section 3.4 - Revocation Request
Added information on how to request revocation of Code and Content Signing Certificates
4. Section 4.4.1.1 - Circumstances for Revoking End-User Subscriber Certificates
Updated to provide more detailed information about revocation procedure
5. Section 4.4.9 - CRL Issuance Frequency
Updated to clarify that expired Certificates need not be expired for more than 30-days before being removed from a CRL.
6. Section 6.1.9 - Key Usage Purposes
a. Updated to reflect that the Key Usage extension is generally used.
b. Added reference to Class 2 Individual Certificates
7. Definitions
7.1 Added reference to Section 3.4 to the definition of "Certificate Revocation List (CRL)"
7.2 Added definition of "VeriSign"