[cabf_validation] Clarifying 3.2.2.4.6

Wayne Thayer wthayer at godaddy.com
Thu Jan 26 21:39:05 MST 2017


Rick -



Sorry for missing that. I’ll endorse if you want to move forward with your
ballot. Alternately, there was a suggestion to ask Gerv about combining this
with the ballot he suggested that would add the methods that weren’t in 181
but didn’t draw exclusion notices for 182.



Thanks,



Wayne



From: Rick Andrews [mailto:Rick_Andrews at symantec.com]
Sent: Thursday, January 26, 2017 11:44 AM
To: CA/Browser Forum Validation WG List <validation at cabforum.org>
Cc: Wayne Thayer <wthayer at godaddy.com>
Subject: RE: Clarifying 3.2.2.4.6



Wayne,



1.	A few weeks ago I proposed in the VWG a ballot to remove the
language about Required Website Content because the presence of option #2 in
3.2.2.4.6 (which uses Random Value or Request token without any additional
Subscriber information) seems to make the additional Subscriber information
useless.
2.	Yes, that’s a typo that should be Random Value. I corrected that in
my proposed ballot.
3.	Agreed.



Now that the logjam is broken, does the VWG have any issue with me proposing
my earlier ballot (attached) in the broader Forum? I would add Wayne’s #3
correction too.



-Rick



From: Validation [mailto:validation-bounces at cabforum.org] On Behalf Of Wayne
Thayer via Validation
Sent: Wednesday, January 25, 2017 4:47 PM
To: CA/Browser Forum Validation WG List <validation at cabforum.org
<mailto:validation at cabforum.org> >
Cc: Wayne Thayer <wthayer at godaddy.com <mailto:wthayer at godaddy.com> >
Subject: [cabf_validation] Clarifying 3.2.2.4.6



I’ve noted a few potential issues with 3.2.2.4.6 (Agreed‐Upon Change to
Website) that I’d like to discuss:



1.       In the definition of Required Website Content, the phrase
“together with additional information that uniquely identifies the
Subscriber” implies that the Random Value or Request Token isn’t enough,
even if that alone uniquely identifies the Subscriber to the CA. Is that the
intent?

2.       The term Request Value in #2 is not defined

3.       It references section 3.3.1 which is blank. Should it reference
4.2.1?



Thanks,



Wayne

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/validation/attachments/20170127/50f849fe/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5081 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/validation/attachments/20170127/50f849fe/attachment.bin>


More information about the Validation mailing list