<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:Verdana;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Balloon Text Char";
margin:0in;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
p.default, li.default, div.default
{mso-style-name:default;
margin:0in;
margin-bottom:.0001pt;
text-autospace:none;
font-size:12.0pt;
font-family:"Cambria","serif";
color:black;}
p.msochpdefault, li.msochpdefault, div.msochpdefault
{mso-style-name:msochpdefault;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:10.0pt;
font-family:"Times New Roman","serif";}
span.e-mailstijl18
{mso-style-name:e-mailstijl18;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.e-mailstijl19
{mso-style-name:e-mailstijl19;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.BalloonTextChar
{mso-style-name:"Balloon Text Char";
mso-style-priority:99;
mso-style-link:"Balloon Text";
font-family:"Tahoma","sans-serif";}
span.EmailStyle25
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='color:#1F497D'>Before we post a final version of our updated proposal, here is a draft version / proposed definition of a CA member of the Forum: <o:p></o:p></span></p><p class=MsoNormal>An organization that (either directly or indirectly through an affiliate): (i) actively issues or actively manages certificates that chain to a root certificate that a Browser Member provides to the public as a trust anchor, and (ii) maintains compliance with Section 17 of the Baseline Requirements. The term applies equally to entities that operate a Root CA, a Subordinate CA, or both. <o:p></o:p></p><p class=MsoNormal>Thoughts?<o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='color:#1F497D'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> public-bounces@cabforum.org [mailto:public-bounces@cabforum.org] <b>On Behalf Of </b>Janssen, M.A. (Mark) - Logius<br><b>Sent:</b> Friday, September 14, 2012 3:15 AM<br><b>To:</b> 'jeremy.rowley@digicert.com'<br><b>Cc:</b> public@cabforum.org<br><b>Subject:</b> Re: [cabfpub] DigiCert Governce Proposal - Version 3<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><div><p class=default><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>Jeremy,</span><o:p></o:p></p><p class=default><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'> </span><o:p></o:p></p><p class=default><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>How should I interpret the following definition in Digicert’s proposal?</span><o:p></o:p></p><p class=default><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'> </span><o:p></o:p></p><p class=default><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>“Certification Authorities: Any entity that issues digital certificates from a root certificate that is both under the entity’s control and included in a Browser’s root store.”</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'> </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>Logius PKIoverheid is a state-sponsored Root CA. Logius does not control (>50% of the shares) from our CSP CAs that issue end-entity certificates. It seems we cannot abide by this definition and would therefore fall in the category of interested parties?! </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'> </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>The current definition in the BR regarding Certification Authority is</span><b><span lang=EN style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>:</span></b><span lang=EN style='font-size:10.0pt;font-family:"Verdana","sans-serif"'> </span><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>An organization that is responsible for the creation, issuance, revocation, and management of Certificates. The term applies equally to both Roots CAs and Subordinate CAs.</span><o:p></o:p></p><p><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>I would propose to adhere to the BR definition.</span><o:p></o:p></p><p><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>Many excuses for reacting so late!</span><o:p></o:p></p><p><span style='font-size:10.0pt;font-family:"Verdana","sans-serif"'>Thanks.<span style='color:#1F497D'> </span></span><o:p></o:p></p><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#1F497D'>Best Regards,<br><br><b>Mark Janssen</b><br>Senior Advisor PKIoverheid<br>........................................................................<br></span><b><span lang=EN-GB style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#1F497D'>Logius<br>The ministry of the Interior and Kingdom Relations (BZK)</span></b><span lang=EN-GB style='font-size:9.0pt;font-family:"Verdana","sans-serif";color:#1F497D'><br></span><span lang=EN-GB style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#1F497D'>Wilhelmina van Pruisenweg 52 | 2595 AN | The Hague<br>P.O. Box 96810 | 2509 JE | The Hague<br>........................................................................<br></span><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#1F497D'>T +31(0) 70 8887 967<br>F +31(0) 70 8887 882<br></span><span lang=NL style='font-size:9.0pt;font-family:"Verdana","sans-serif";color:#1F497D'><a href="mailto:mark.janssen@logius.nl" target="_blank" title="mailto:mark.janssen@logius.nl"><span lang=EN-US style='font-size:7.5pt'>mark.janssen@logius.nl</span></a></span><span style='font-size:9.0pt;font-family:"Verdana","sans-serif";color:#1F497D'><br></span><span lang=FR style='font-size:9.0pt;font-family:"Verdana","sans-serif";color:#1F497D'><a href="https://webmail.ictu.nl/exchweb/bin/redir.asp?URL=http://www.logius.nl/" target="_blank" title="https://webmail.ictu.nl/exchweb/bin/redir.asp?URL=http://www.logius.nl/"><span style='font-size:7.5pt'>http://www.logius.nl/</span></a></span><span style='font-size:9.0pt;font-family:"Verdana","sans-serif";color:#1F497D'><br></span><span style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:#1F497D'>........................................................................<br><b>Service e-government</b><br>........................................................................</span><o:p></o:p></p><p class=MsoNormal><span lang=EN-GB style='font-size:7.5pt;font-family:"Verdana","sans-serif";color:green'>Please consider the environment - do you really need to print this mail?</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span lang=NL style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>Van:</span></b><span lang=NL style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a href="mailto:public-bounces@cabforum.org">public-bounces@cabforum.org</a> <a href="mailto:[mailto:public-bounces@cabforum.org]">[mailto:public-bounces@cabforum.org]</a> <b>Namens </b>Jeremy Rowley<br><b>Verzonden:</b> vrijdag 14 september 2012 2:25<br><b>Aan:</b> <a href="mailto:public@cabforum.org">public@cabforum.org</a><br><b>Onderwerp:</b> [cabfpub] DigiCert Governce Proposal - Version 3</span><o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Thank you everyone who submitted comments. We’ve revised our governance proposal as follows:<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoListParagraph style='text-indent:-.25in'>1)<span style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span>Browser Definition. To permit a better comparison of the two proposals, prevent unintentionally exclusion of any current members, and provide a streamlined governance reform, we’ve reverted our definition of Trusted Root Store to the browser definition currently used by the CAB Forum..<o:p></o:p></p><p class=MsoListParagraph style='text-indent:-.25in'>2)<span style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span>Membership Fees. Although the Forum will set the fees based on actual costs of operation, we’ve lowered our expected basic membership fee to $500. We agree with Gerv that the Forum should continue its gentleman’s agreement for members to rotate face-to-face hosting responsibilities, meaning the only initial operating costs should be costs associated with creating the organization, the teleconference bridge, and the costs incurred by GoDaddy for providing the email and web services. <o:p></o:p></p><p class=MsoListParagraph style='text-indent:-.25in'>3)<span style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span>Board Fees. For the same reason, we’ve lowered the expected board cost to $2000. To simplify the proposal and prevent the board fee from being less than the membership fee, we’ve changed the section to make the board fee an additional fee.<o:p></o:p></p><p class=MsoListParagraph style='text-indent:-.25in'>4)<span style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span>Clarification on Initial and Revised Budgets. We’ve clarified that the current membership of the Forum will establish the Forum’s budget using the standard voting procedure. After governance reform is complete, the Forum will approve a new budget on an annual basis.<o:p></o:p></p><p class=MsoListParagraph style='text-indent:-.25in'>5)<span style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span>Interested Party Requirements. Brad Hill made a good point about the number of required votes. We believe his suggestion of five interested party votes fairly balances the need to hear from a cross-section of interested parties with the concern of unduly restricting interested party participation.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Thanks,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Jeremy<o:p></o:p></p></div><p class=MsoNormal><span style='font-size:12.0pt;font-family:"Times New Roman","serif"'><o:p> </o:p></span></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:12.0pt;font-family:"Times New Roman","serif"'><hr size=2 width="100%" align=center></span></div><p class=MsoNormal><span style='font-size:7.5pt;font-family:"Arial","sans-serif";color:gray'><br>Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is toegezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten.<br>This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages. .</span><span style='font-size:12.0pt;font-family:"Times New Roman","serif"'><o:p></o:p></span></p></div></body></html>