[cabfpub] Draft Ballot 186 - Limiting the Reuse of Validation Information

Gervase Markham gerv at mozilla.org
Wed Feb 1 10:13:58 UTC 2017

On 01/02/17 10:05, Stephen Davidson via Public wrote:
> I agree with Peter's point: a revocation should not automatically
> require a re-vetting of Org or Domain details as most revocations occur
> from "good housekeeping" with keys rather than a failure of underlying
> vetting.

I see the problem there. Would it work to narrow that particular bullet
to certain revocation reasons (perhaps by reference to the list of
revocation reasons elsewhere in the BRs)?

> I also point out that this ballot - and the corresponding limit on
> validity - represent fairly radical changes to the SSL market,
> particularly for better validated classes such as EV (where most issued
> certs have two year validity).  Without falling afoul of the CABF's
> membership restrictions on talking price, I think it's fair to note that
> the proposed restriction will, in effect, drive up the "cost per year"
> of EV and limits the ability of CAs to differentiate their offerings.

I would gently suggest that any discussion of this would fall afoul of
the anti-trust statement, which forbids discussion of "costs" and "cost


More information about the Public mailing list