[cabf_validation] *Please review ASAP* Updated domain validation draft

Doug Beattie doug.beattie at globalsign.com
Thu Aug 27 12:33:52 MST 2015 

Hi Kirk,

Good updates.

Should #4 also be updated to use Random Value?

Z) the use of Random Value is now used in more places than just 6 and 7, so the info in the right column needs to be updated

Nit-pick: If the FQDN starts with a wildcard character, then the CA MUST remove all wildcard labels from the left most portion of requested FQDN, if any.

If you want to send out a version with tracking, that’s OK, but I think you should definitely send out a clean version for people to review and comment on.


From: validation-bounces at cabforum.org [mailto:validation-bounces at cabforum.org] On Behalf Of kirk_hall at trendmicro.com
Sent: Thursday, August 27, 2015 2:49 PM
To: validation at cabforum.org
Subject: [cabf_validation] *Please review ASAP* Updated domain validation draft
Importance: High

I attach an updated Domain Validation draft revision, dated today (Aug. 27) in track changes mode from the Aug. 26 draft we discussed this morning.

I added a new Method 10 (line M) to cover the cases where the CA is also the Registrar.  Wayne, can you edit?

Jeremy, you said you had additional Authorized Ports to propose – please send to this list today if possible.

The definition for Random Value (line Z) has changed as we discussed, so we can use the term everywhere.  Per our discussion, we only specify minimum entropy for two cases – automated processes, and practical demonstration in the DNS record.  Otherwise, the Random Value can be a value specified by the CA that is unknown to the Applicant.  Isn’t that what we decided?

For everyone else – please review and see if this is ready to forward to the Forum members TOMORROW for first discussion next Thursday.  Meaning, please provide your comments today or tomorrow morning at the latest.



TREND MICRO EMAIL NOTICE

The information contained in this email and any attachments is confidential

and may be subject to copyright or other intellectual property protection.

If you are not the intended recipient, you are not authorized to use or

disclose this information, and we request that you notify us by reply mail or

telephone and delete the original message from your mail system.



-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://cabforum.org/pipermail/validation/attachments/20150827/82bbb534/attachment.html

More information about the Validation mailing list