[Servercert-wg] Voting begins: Ballot SC15 version 2: Remove Validation Method Number 9

Neil Dunbar ndunbar at trustcorsystems.com
Thu Jan 31 09:38:13 MST 2019 

TrustCor votes YES to Ballot SC15 Version 2.

Regards,

Neil

> On 29 Jan 2019, at 21:26, Doug Beattie via Servercert-wg <servercert-wg at cabforum.org <mailto:servercert-wg at cabforum.org>> wrote:
> 
> 
> Corrected discussion and Voting period dates
> 
> Ballot SC15 version 2: Remove Validation Method Number 9
> 
> Purpose of Ballot:  Method 9, Test Certificate, is insecure when web hosting platforms use a single IP address for more than one Domain Name, so this method must not be used.
> 
> The following motion has been proposed by Doug Beattie of GlobalSign and endorsed by Bruce Morton of Entrust Datacard and Ryan Sleevi of Google.
> 
> --- MOTION BEGINS ---
> This ballot modifies the “Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates” as follows, based on Version 1.6.2:
> 
> Replace the content of section 3.2.2.4.9 with:
> 
> This method has been retired and MUST NOT be used. Prior validations using this method and validation data gathered according to this method SHALL NOT be used to issue certificates.
> 
> 
> --- MOTION ENDS ---
> 
> *** WARNING ***: USE AT YOUR OWN RISK.  THE REDLINE BELOW IS NOT THE OFFICIAL VERSION OF THE CHANGES (CABF Bylaws, Section 2.4(a)):
> 
> A comparison of the changes can be found at: https://github.com/dougbeattie/documents/compare/master...dougbeattie:SC15---Remove-Method-9 <https://github.com/dougbeattie/documents/compare/master...dougbeattie:SC15---Remove-Method-9>
> 
> 
> The procedure for approval of this ballot is as follows:
> 
> Discussion (7+ days)
> 
> Start Time: 2019-01-22 08:15 Eastern
> 
> End Time: 2019-01-29 08:15 Eastern
> 
> Vote for approval (7 days)
> 
> Start Time: 2019-01-29 15:00 Eastern
> 
> End Time: 2019-02-05 15:00 Eastern
> 
> End Time: TBD
> 
> 
> 
> _______________________________________________
> Servercert-wg mailing list
> Servercert-wg at cabforum.org <mailto:Servercert-wg at cabforum.org>
> http://cabforum.org/mailman/listinfo/servercert-wg <http://cabforum.org/mailman/listinfo/servercert-wg>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/servercert-wg/attachments/20190131/4116a3c1/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: Message signed with OpenPGP
URL: <http://cabforum.org/pipermail/servercert-wg/attachments/20190131/4116a3c1/attachment-0001.sig>

More information about the Servercert-wg mailing list