<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta name=Generator content="Microsoft Word 14 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
line-height:115%;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
h1
{mso-style-priority:9;
mso-style-link:"Heading 1 Char";
margin-top:24.0pt;
margin-right:0in;
margin-bottom:0in;
margin-left:0in;
margin-bottom:.0001pt;
line-height:115%;
page-break-after:avoid;
font-size:14.0pt;
font-family:"Cambria","serif";
color:#365F91;
font-weight:bold;}
h2
{mso-style-priority:9;
mso-style-link:"Heading 2 Char";
margin-top:10.0pt;
margin-right:0in;
margin-bottom:0in;
margin-left:0in;
margin-bottom:.0001pt;
line-height:115%;
page-break-after:avoid;
font-size:13.0pt;
font-family:"Cambria","serif";
color:#4F81BD;
font-weight:bold;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
pre
{mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0in;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";
color:black;}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Balloon Text Char";
margin:0in;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";
color:black;}
span.Heading1Char
{mso-style-name:"Heading 1 Char";
mso-style-priority:9;
mso-style-link:"Heading 1";
font-family:"Cambria","serif";
color:#365F91;
font-weight:bold;}
span.Heading2Char
{mso-style-name:"Heading 2 Char";
mso-style-priority:9;
mso-style-link:"Heading 2";
font-family:"Cambria","serif";
color:#4F81BD;
font-weight:bold;}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-priority:99;
mso-style-link:"HTML Preformatted";
font-family:Consolas;
color:black;}
span.BalloonTextChar
{mso-style-name:"Balloon Text Char";
mso-style-priority:99;
mso-style-link:"Balloon Text";
font-family:"Tahoma","sans-serif";
color:black;}
span.HTMLconformatoprevioCar
{mso-style-name:"HTML con formato previo Car";
mso-style-priority:99;
mso-style-link:"HTML con formato previo";
font-family:Consolas;
color:black;}
p.HTMLconformatoprevio, li.HTMLconformatoprevio, div.HTMLconformatoprevio
{mso-style-name:"HTML con formato previo";
mso-style-priority:99;
mso-style-link:"HTML con formato previo Car";
margin:0in;
margin-bottom:.0001pt;
line-height:115%;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
span.TextodegloboCar
{mso-style-name:"Texto de globo Car";
mso-style-priority:99;
mso-style-link:"Texto de globo";
font-family:"Tahoma","sans-serif";
color:black;}
p.Textodeglobo, li.Textodeglobo, div.Textodeglobo
{mso-style-name:"Texto de globo";
mso-style-priority:99;
mso-style-link:"Texto de globo Car";
margin:0in;
margin-bottom:.0001pt;
line-height:115%;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
span.EmailStyle28
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle29
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle30
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;
font-weight:normal;
font-style:normal;}
span.EmailStyle31
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle32
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle33
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle34
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:70.85pt 85.05pt 70.85pt 85.05pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body bgcolor=white lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>Thanks, Arno. I’ll revise and resubmit.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='line-height:normal'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'> public-bounces@cabforum.org [mailto:public-bounces@cabforum.org] <b>On Behalf Of </b>Arno Fiedler<br><b>Sent:</b> Wednesday, July 9, 2014 6:05 AM<br><b>To:</b> public@cabforum.org<br><b>Subject:</b> Re: [cabfpub] Ballot 121 (insurance)<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>Hello,<br>it sounds very US-centric and very detailed, "<i>MUST be with a company rated no less than A- as to Policy Holder’s Rating in the current edition of Best’s Insurance Guide"</i> seems to be not applicable for "Rest of World." <br>Best regards<br>arno<br><br><br>Am 08.07.2014 17:04, schrieb Ben Wilson:<o:p></o:p></p></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>All,</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>Based on feedback received so far from several international cyber insurance experts, here is a current iteration for revisions to Section 8.4 of the EV Guidelines (redlined PDF attached). </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>This is only for the EV Guidelines and would apply to CAs desiring to issue Extended Validation Certificates. </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>This wording may be further refined based upon your input to Jeremy’s question and as any other information from insurance experts comes in. </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>Please check with your insurance brokers to confirm that you either already have these coverages or that these can be obtained by your company at reasonable cost.</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>Thanks,</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'>Ben</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><h2><span style='font-size:12.0pt;line-height:115%'>8.4.Insurance </span><o:p></o:p></h2><p>Effective _______, each CA SHALL continuously maintain the following insurance related to its performance and obligations under these Guidelines:<o:p></o:p></p><p style='margin-left:.5in;text-indent:-27.35pt'>(A) insurance covering damages to systems, data, or software and for business interruptions due to natural disaster, fire, IT security failure, malware, cyber attack / criminal hacker, or theft, in the amount of at least two million US dollars ($2 million) in coverage; and <o:p></o:p></p><p style='margin-left:.5in;text-indent:-27.35pt'>(B) Technology Errors and Omissions insurance, with policy limits of at least five million US dollars ($5,000,000 per claim and in the aggregate) covering financial damages to third parties arising out of a negligent act, error, or omission in the performance of technology services under these Guidelines with coverage to be kept in place for all periods during which an EV Certificate issued by the CA is still valid. If coverage is non-renewed or canceled, the CA shall purchase extended reporting period coverage for at least a two-year period. Territory of coverage shall be global, except for countries sanctioned by the United States or the European Union. <o:p></o:p></p><p>Such insurance <span style='text-transform:uppercase'>must</span> not exclude coverage when providing public key infrastructure services and MUST be with a company rated no less than A- as to Policy Holder’s Rating in the current edition of Best’s Insurance Guide (or with an association of companies each of the members of which are so rated). <o:p></o:p></p><p>A CA MAY self-insure for liabilities that arise from such party's performance and obligations under these Guidelines provided that it has at least five hundred million US dollars in liquid assets based on audited financial statements in the past twelve months, and a quick ratio (ratio of liquid assets to current liabilities) of not less than 1.0. <o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;line-height:115%;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p></blockquote><p class=MsoNormal style='line-height:normal'><br><br><o:p></o:p></p><pre>-- <o:p></o:p></pre><pre>Arno Fiedler<o:p></o:p></pre><pre>Nimbus Technologieberatung GmbH<o:p></o:p></pre><pre>Reichensteiner Weg 17<o:p></o:p></pre><pre>14195 Berlin<o:p></o:p></pre><pre>Mobil: 0049-(0)172-3053272<o:p></o:p></pre><pre>Fax: 0049-(0)30-89745-777<o:p></o:p></pre><pre>E-Mail: <a href="mailto:arno.fiedler@nimbus-berlin.com">arno.fiedler@nimbus-berlin.com</a><o:p></o:p></pre><pre>Web: <a href="http://www.nimbus-berlin.com">www.nimbus-berlin.com</a><o:p></o:p></pre><pre>Geschäftsführer: Arno Fiedler<o:p></o:p></pre><pre>USt-IdNr. : DE 203 269 920<o:p></o:p></pre><pre>D-U-N-S® Nr. 50-730-8117<o:p></o:p></pre><pre>HandelsregisterNr:HRB 109409 B<o:p></o:p></pre></div></body></html>