<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=iso-2022-jp"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:"Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"MS PGothic";
panose-1:2 11 6 0 7 2 5 8 2 4;}
@font-face
{font-family:"\@MS PGothic";}
@font-face
{font-family:"\@Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-fareast-language:JA;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link="#0563C1" vlink="#954F72"><div class=WordSection1><p class=MsoNormal><span style='mso-fareast-language:EN-US'>Apologies for a tangent, but while looking at the current language, I noticed that it is silent on the requirement for EV code signing certs, which could lead to confusion.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>If we�$B!G�(Bre trying to keep the current behavior, for additional clarity, it should say something like:<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>9.2.3. Subject Domain Component Field<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>This field MAY be present in EV Code Signing Certificates, but MUST NOT be present in Non-EV Code Signing Certificates.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>-Tim<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><div style='border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in 4.0pt'><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Cscwg-public <cscwg-public-bounces@cabforum.org> <b>On Behalf Of </b>Dean Coclin via Cscwg-public<br><b>Sent:</b> Tuesday, July 21, 2020 3:48 PM<br><b>To:</b> Atsushi Inaba <atsushi.inaba@globalsign.com>; cscwg-public@cabforum.org; Bruce Morton <Bruce.Morton@entrustdatacard.com><br><b>Subject:</b> Re: [Cscwg-public] FW: Ballot CSC-2: Consolidate Baseline and EV CSCWG Document<o:p></o:p></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>Hello Inaba-san,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>I reviewed the document and compared it to the EV Code Signing Guidelines and the Baseline Requirements for Code Signing. Section 9.2.3 with the Heading �$B!H�(BSubject Domain Component Field�$B!I�(B only appears in the Baseline Requirements. Hence it only applies to Non-EV certs. That same section number in the EV document is titled, �$B!H�(BSubject Business Category Field�$B!I�(B. Bruce has moved that to section 9.2.5 in the new document. <o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>Making the change you suggest, although probably a good one, would be beyond our guidance of no substantive changes for this ballot. We should consider it though for a future document update.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>Bruce-if you agree, please don�$B!G�(Bt forget to start the voting later today.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>Thanks<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'>Dean<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:EN-US'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Cscwg-public <<a href="mailto:cscwg-public-bounces@cabforum.org">cscwg-public-bounces@cabforum.org</a>> <b>On Behalf Of </b>Atsushi Inaba via Cscwg-public<br><b>Sent:</b> Monday, July 20, 2020 1:01 AM<br><b>To:</b> Bruce Morton <<a href="mailto:Bruce.Morton@entrustdatacard.com">Bruce.Morton@entrustdatacard.com</a>>; <a href="mailto:cscwg-public@cabforum.org">cscwg-public@cabforum.org</a><br><b>Subject:</b> Re: [Cscwg-public] FW: Ballot CSC-2: Consolidate Baseline and EV CSCWG Document<o:p></o:p></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>Dear Bruce,<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>Sorry to ask about such minor details.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>How about trying to change the description of 9.2.3 slightly?<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><From><o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>9.2.3 Subject Domain Component Field<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>For Non-EV Code Signing Certificates, this field MUST not be <o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>present in a Code Signing Certificate.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><To><o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>9.2.3 Subject Domain Component Field<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>This field MUST not be present in a Code Signing Certificate.<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>Best regards,<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'>Atsushi Inaba<o:p></o:p></span></p><div><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span lang=JA style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>�$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=�(B</span><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>GMO GlobalSign K.K.<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>Business Planning<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>Atsushi Inaba<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>1-2-3, Dogenzaka, Shibuya Ku, Tokyo, Japan<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>150-0043<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>TEL: +81-3-6370-6671<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>FAX: +81-3-6370-6505<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>E-MAIL: <a href="mailto:atsushi.inaba@globalsign.com">atsushi.inaba@globalsign.com</a><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><a href="URL:https://jp.globalsign.com/">URL:https://jp.globalsign.com/</a><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span lang=JA style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>�$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=�(B</span><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>THANK YOU 24 YEARS Internet for Everyone<o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span lang=JA style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>�$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=�(B</span><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span lang=JA style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>�$B"#�(B</span><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'> GMO INTERNET GROUP <span lang=JA>�$B"#�(B </span><a href="http://www.gmo.jp/">http://www.gmo.jp/</a><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span lang=JA style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>�$B!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=!=�(B</span><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>This e-mail message is intended to be conveyed only to the <o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>designated recipient(s). If you are NOT the intended <o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>recipient(s) of this e-mail, please kindly notify the sender <o:p></o:p></span></p><p class=MsoNormal style='text-align:justify;text-justify:inter-ideograph'><span style='font-size:10.5pt;font-family:"Yu Gothic",sans-serif;color:#1F497D'>immediately and delete the original message from your system.<o:p></o:p></span></p></div><p class=MsoNormal><span style='font-family:"Yu Gothic",sans-serif;color:#1F497D'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Cscwg-public <<a href="mailto:cscwg-public-bounces@cabforum.org">cscwg-public-bounces@cabforum.org</a>> <b>On Behalf Of </b>Bruce Morton via Cscwg-public<br><b>Sent:</b> Wednesday, July 15, 2020 6:36 AM<br><b>To:</b> <a href="mailto:cscwg-public@cabforum.org">cscwg-public@cabforum.org</a><br><b>Subject:</b> [Cscwg-public] FW: Ballot CSC-2: Consolidate Baseline and EV CSCWG Document<o:p></o:p></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='mso-fareast-language:ZH-CN'>Here is the ballot to the public list for discussion. The discussion period will be extended to minimum 7 days from today, so will end no earlier than 21 July 2020, 22:00 UTC.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:ZH-CN'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:ZH-CN'>Thanks, Bruce.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:ZH-CN'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Bruce Morton <br><b>Sent:</b> Thursday, July 9, 2020 8:58 AM<br><b>To:</b> <a href="mailto:cscwg-management@cabforum.org">cscwg-management@cabforum.org</a><br><b>Subject:</b> Ballot CSC-2: Consolidate Baseline and EV CSCWG Document<o:p></o:p></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>This begins the discussion period for the Ballot CSC-2: Consolidate Baseline and EV CSCWG Document<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Purpose of Ballot:<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>The CA/Browser Forum currently has two code signing requirements documents: 1) Baseline Requirements for the Issuance and Management of Publicly�$B!>�(BTrusted Code Signing Certificates and 2) Guidelines For The Issuance And Management Of Extended Validation Code Signing Certificates. The two documents are in similar format and cover many of the same requirements. CAs which issue both types of certificates must adhere to both documents and must be audited to two sets of criteria. CA/Browser Forum members also need to manage two sets of criteria. Auditors need to manage two sets of audit criteria.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>The greater goal is to 1) migrate the documents into one document which will manage the requirements of both EV and non-EV code signing certificates, 2) reformat the document to be in the RFC 3647 format which will be in line with CPS format requirements and 3) change and manage the requirements in an ongoing process.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>This ballot addresses item 1 of the process. The migration started with using the Baseline Requirements for Code Signing and adding in the EV Code Signing Requirements. The process was to minimize technical change although there was some change to allow merging. The process was not to correct issues, but a �$B!H�(Bparking lot�$B!I�(B list was created to capture changes to be addressed in the future.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>The following motion has been proposed by Bruce Morton of Entrust and endorsed by Mike Reilly of Microsoft and Dean Coclin of DigiCert.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>--- MOTION BEGINS ---<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>This ballot modifies the �$B!H�(BBaseline Requirements for the Issuance and Management of Publicly�$B!>�(BTrusted Code Signing Certificates�$B!I�(B based on Version 1.2 and removes the requirements for �$B!H�(BGuidelines For The Issuance And Management Of Extended Validation Code Signing Certificates�$B!I�(B based on Version 1.4. A redline update is attached.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Be it resolved that the CA / Browser Forum adopts the attached CA/B Forum Baseline Requirements for the Issuance and Management of Publicly�$B!>�(BTrusted Code Signing Certificates version 2.0 effective upon adoption.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>--- MOTION ENDS ---<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>This ballot proposes a Final Maintenance Guideline.<br><br>The procedure for approval of this ballot is as follows:<br><br>Discussion (7+ days)<br><br>Start Time: 9 July 2020 17:00:00 UTC<br><br>End Time: 16 July 2020 17:00:00 UTC<br><br>Vote for approval (7 days)<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Start Time: TBD<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>End Time: TBD<o:p></o:p></p></div></div></body></html>