[cabfpub] Restarting discussion period for Ballot 190 v4 dated June 30, 2017

Kirk Hall Kirk.Hall at entrustdatacard.com
Sat Jul 1 10:29:08 MST 2017


Gerv has made a good suggestion for changing Ballot 190 still further (see below).  It's a holiday weekend in the US and Canada, so I don't think we will get much of a dialogue going.



Gerv, I think your modification makes sense, but I'd like to let others comment if they see a problem or have an alternative suggestion for wording.



Right now, the discussion period for Ballot 190 ends on Sunday, July 2 (tomorrow) at 23:00 UTC.  With regret, we are withdrawing Ballot 190 and terminating the current discussion period now, and simultaneously reintroducing Ballot 190 and restarting the discussion period now so we can work out this wording next week.  Also, I want to correct my spelling of one endorser’s name – it’s Mads Henriksveen of Buypass (I misspelled it before – sorry, Mads).



Accordingly, Ballot 190 v4 is reintroduced with the following new Discussion Period and Voting Period.



Discussion Period: July 1, 2017 at 18:00 UTC through July 8, 2017 at 18:00 UTC

Voting Period: July 8, 2017 at 18:00 UTC through July 15, 2017 at 18:00 UTC.



We would like input from members over the next week.  Should we change the following language in v4 of the Ballot to Gerv’s proposed language (which would be included in a new v5)?



Current v4 language:



Note: Once the FQDN has been validated using this method, the CA MAY also issue Certificates for other FQDNs that have more labels than the validated FQDN and end in the validated FQDN.



Gerv’s proposed language:



Note: Once the FQDN has been validated using this method, the CA MAY also issue Certificates for other FQDNs that end with all the labels of the validated FQDN and have more labels than it.



Comments?



-----Original Message-----
From: Gervase Markham [mailto:gerv at mozilla.org]
Sent: Friday, June 30, 2017 5:54 PM
To: Kirk Hall <Kirk.Hall at entrustdatacard.com>; CA/Browser Forum Public Discussion List <public at cabforum.org>
Subject: [EXTERNAL]Re: [cabfpub] Updated Ballot 190 v4 dated June 30, 2017



On 30/06/17 17:19, Kirk Hall via Public wrote:

> “_Note_: Once the FQDN has been validated using this method, the CA

> MAY also issue Certificates for other FQDNs that have more labels than

> the validated FQDN and end in the validated FQDN.”



If we are going to be pedantic, foo.wibble-fish.com has more labels than fish.com and still "ends in" the validated FQDN in the same sense the was objected to.



It would be much better to phrase this entirely in terms of labels.

Here's my first stab:



_Note_: Once the FQDN has been validated using this method, the CA MAY also issue Certificates for other FQDNs that end with all the labels of the validated FQDN and have more labels than it.



Gerv
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/public/attachments/20170701/1007cf4d/attachment-0001.html>


More information about the Public mailing list