[Servercert-wg] Ballot SC31: Browser Alignment
Ryan Sleevi
sleevi at google.com
Thu Jun 18 09:26:42 MST 2020
Good point! I'd borrowed the language from 4.9.14, but while that actually
is "Not applicable" (because you cannot suspend), you're quite right, it
doesn't make sense here.
I'm inclined to lean on "No Stipulation" to indicate we've actively
considered and aren't making any requirements, but if folks would prefer
blank and chime in within the next few hours, I can live with that :)
On Thu, Jun 18, 2020 at 11:56 AM Richard Smith <rich at sectigo.com> wrote:
> Ryan,
>
> Should the text in BR 4.9.11 be “No stipulation” rather than “Not
> applicable”? Or be simply left blank as is the current custom for sections
> of the BR to which the Forum has not elected to state a requirement?
>
>
>
> Regards,
>
> Rich
>
>
>
> *From:* Servercert-wg <servercert-wg-bounces at cabforum.org> *On Behalf Of *Ryan
> Sleevi via Servercert-wg
> *Sent:* Tuesday, June 16, 2020 5:29 PM
> *To:* CA/B Forum Server Certificate WG Public Discussion List <
> servercert-wg at cabforum.org>
> *Subject:* [Servercert-wg] Ballot SC31: Browser Alignment
>
>
>
> CAUTION: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
>
> This begins the discussion period for Ballot SC31: Browser Alignment.
>
>
>
> *Purpose of Ballot:*
>
>
>
> As a regular part of Root Program maintenance, and reflecting the
> independent nature of each Root Programs' needs and requirements, Root
> Programs have introduced a number of requirements above and beyond those
> captured in the Baseline Requirements. For Root Programs, this approach
> results in a lack of certainty, as the requirements are not independently
> audited and assessed, unless otherwise provided for. For CAs, this
> introduces confusion when applying to have the same CA certificate trusted
> by multiple Root Programs, as the effective requirements that the CA and
> certificates need to comply with are the union of the most-restrictive
> policies.
>
> The following ballot attempts to resolve this uncertainty for Root
> Programs, and ambiguity for CAs, by incorporating Root Program-specific
> requirements that are either effective or will, in the future, be effective.
>
>
>
> This was originally drafted in
> https://github.com/sleevi/cabforum-docs/pull/10 , and as a pull request
> is available at https://github.com/cabforum/documents/pull/195
>
> The full description, and motivation, of each change, along with the
> effective dates, are available at the above pull request.
>
> The following motion has been proposed by Ryan Sleevi of Google and
> endorsed by Clint Wilson of Apple and Mike Reilly of Microsoft.
>
>
> *--- MOTION BEGINS --- *
> This ballot modifies "Baseline Requirements for the Issuance and
> Management of Publicly-Trusted Certificates" ("Baseline Requirements") as
> follows, based on Version 1.7.0
>
> MODIFY the Baseline Requirements as defined in the following redline:
>
> https://github.com/cabforum/documents/compare/d5067bbbfb46906c65e476ef3d55dd3b2c505a09...90a7dfe95d32ae8c76a4fa55c7b038d4928872c6
>
> This ballot modifies the “Guidelines for the Issuance and Management of
> Extended Validation Certificates” (“EV Guidelines”) as follows, based on
> version 1.7.2:
>
> MODIFY the EV Guidelines as defined in the following redline:
>
> https://github.com/cabforum/documents/compare/d5067bbbfb46906c65e476ef3d55dd3b2c505a09...90a7dfe95d32ae8c76a4fa55c7b038d4928872c6
>
> The Chair or Vice-Chair is permitted to update the Relevant Dates of the
> Baseline Requirements and the EV Guidelines to reflect these changes.
>
>
> *--- MOTION ENDS --- *
> This ballot proposes two Final Maintenance Guidelines.
>
> The procedure for approval of this ballot is as follows:
>
> Discussion (7+ days)
> Start Time: 17-June 2020 01:00 UTC
> End Time: 24-June 2020 10:00 UTC
>
> Vote for approval (7 days)
> Start Time: TBD
> End Time: TBD
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20200618/acb9b1eb/attachment-0001.html>
More information about the Servercert-wg
mailing list