[cabfpub] Draft Ballot 186 - Limiting the Reuse of Validation Information
Steve_Medin at symantec.com
Fri Feb 3 16:48:00 UTC 2017
Certificate owners are staffed at 1/(annual business days) the number of people needed to handle Heartbleed 2. Broadly interoperable web server automation is still in the realm of $500 pizza boxes or protocols that solve the easy half of the web.
> -----Original Message-----
> From: Public [mailto:public-bounces at cabforum.org] On Behalf Of Gervase
> Markham via Public
> Sent: Friday, February 03, 2017 3:40 AM
> To: CA/Browser Forum Public Discussion List <public at cabforum.org>; Ryan
> Sleevi <sleevi at google.com>
> Cc: Gervase Markham <gerv at mozilla.org>
> Subject: Re: [cabfpub] Draft Ballot 186 - Limiting the Reuse of Validation
> On 03/02/17 07:52, Dimitris Zacharopoulos via Public wrote:
> > I understand that this does not address all of Ryan's concerns but we
> > need to highlight that Subscribers with a large volume of certificates
> > will have a huge administrative overhead if they need to change these
> > certificates annually.
> Regardless of whether this ballot passes or fails, I hope you can see that this
> situation is a big problem, both for those customers and for the ecosystem.
> If, say, there are misissuances and an intermediate has to be revoked, these
> customers will have big problems if they can't change all their certificates
> quickly. And if there are lots of customers like this, it creates a problem for
> moving quickly to deal with security problems.
> Public mailing list
> Public at cabforum.org
More information about the Public