[cabfpub] Draft Ballot 186 - Limiting the Reuse of Validation Information

Steve Medin Steve_Medin at symantec.com
Fri Feb 3 16:48:00 UTC 2017


Certificate owners are staffed at 1/(annual business days) the number of people needed to handle Heartbleed 2. Broadly interoperable web server automation is still in the realm of $500 pizza boxes or protocols that solve the easy half of the web.

> -----Original Message-----
> From: Public [mailto:public-bounces at cabforum.org] On Behalf Of Gervase
> Markham via Public
> Sent: Friday, February 03, 2017 3:40 AM
> To: CA/Browser Forum Public Discussion List <public at cabforum.org>; Ryan
> Sleevi <sleevi at google.com>
> Cc: Gervase Markham <gerv at mozilla.org>
> Subject: Re: [cabfpub] Draft Ballot 186 - Limiting the Reuse of Validation
> Information
> 
> On 03/02/17 07:52, Dimitris Zacharopoulos via Public wrote:
> > I understand that this does not address all of Ryan's concerns but we
> > need to highlight that Subscribers with a large volume of certificates
> > will have a huge administrative overhead if they need to change these
> > certificates annually.
> 
> Regardless of whether this ballot passes or fails, I hope you can see that this
> situation is a big problem, both for those customers and for the ecosystem.
> If, say, there are misissuances and an intermediate has to be revoked, these
> customers will have big problems if they can't change all their certificates
> quickly. And if there are lots of customers like this, it creates a problem for
> moving quickly to deal with security problems.
> 
> Gerv
> _______________________________________________
> Public mailing list
> Public at cabforum.org
> https://clicktime.symantec.com/a/1/IZ3AFpXJ-i5-
> xarahEZbnRPTRY7jtxECM6mnsjdWrCo=?d=iJ_zKe7roR8ubjNihe-7BU67o-
> VTJ7SUUIrP-
> Dm_WtbKgAb3spgPlyjg29iqCsWtdi19IGgkc9JtkdFETTEUETaAkD8HABC3Co0e
> OrnrnZDNB5HBdmx4iDiZ5pVHpWmmP_TvDFv5ElHzf49IgWePBM0C8GB1pKM
> agIHwhgjSzUbF_l5dFrXWDI4vnKHAytiXVcOJMkRBXBG9msfsLOgUiTE0c9Ub4y
> urBnXrZ0uIPeQi0vbHp4FhvR0vjFnl_ufS38Fbm5MtHdxoS8H3CinMuRKOO-
> caNpGcGAPdVj-
> NUqW4x3kvWl1RfG3GmcUodus3ktOFPozusz5giSTyF2lzRWsQhr9fIER9OcYb_Y
> CpvpJ9rWZtoYSqBeHYMoBszd8KnXGqTwPsDkQXo9GFNtReofC8keOs_dwxaS
> GXRP_jv9-7hqVLSL-
> 20oE904lo&u=https%3A%2F%2Fcabforum.org%2Fmailman%2Flistinfo%2Fpu
> blic



More information about the Public mailing list