<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:SimSun;
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:PMingLiU;
panose-1:2 2 5 0 0 0 0 0 0 0;}
@font-face
{font-family:PMingLiU;
panose-1:2 2 5 0 0 0 0 0 0 0;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:"\@PMingLiU";
panose-1:2 2 5 0 0 0 0 0 0 0;}
@font-face
{font-family:"MS UI Gothic";
panose-1:2 11 6 0 7 2 5 8 2 4;}
@font-face
{font-family:"\@MS UI Gothic";
panose-1:2 11 6 0 7 2 5 8 2 4;}
@font-face
{font-family:"\@SimSun";
panose-1:2 1 6 0 3 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Balloon Text Char";
margin:0in;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";}
span.EmailStyle18
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;
font-weight:normal;
font-style:normal;}
span.BalloonTextChar
{mso-style-name:"Balloon Text Char";
mso-style-priority:99;
mso-style-link:"Balloon Text";
font-family:"Tahoma","sans-serif";}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>There’s more to discuss here. First of all, I don’t think we’ve heard from *<b>all</b>* browser vendors. Clearly, what Ryan said below applies to Chrome (and I presume Opera, since they share the common Chromium open source base) and IE. I don’t recall hearing from Gerv during the F2F, so I’d appreciate a positive confirmation about Firefox. And we’ve not yet heard from Apple. Geoff Keating, can you please confirm that Safari will accept SHA-2 signed CRLs from SHA-1 roots after January 1, 2017?<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Second: speaking only for Symantec (although I suspect other CAs will agree) I don’t want to make the change from SHA-1 CRLs to SHA-2 CRLs at midnight December 31, 2016. We’d like to make the change sooner, perhaps early December 2016 when we have a full staff in the office. I would like positive confirmation from all browser vendors that the latest version of their browser will not *<b>reject</b>* a SHA-2 CRL from a SHA-1 CA before January 1, 2017. Thanks in advance.<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>-Rick<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal style='margin-left:.5in'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> Ryan Sleevi [mailto:sleevi@google.com] <br><b>Sent:</b> Friday, October 24, 2014 4:57 PM<br><b>To:</b> Rick Andrews<br><b>Cc:</b> </span><span style='font-size:10.0pt;font-family:"MS UI Gothic","sans-serif"'>王文正</span><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>; </span><span style='font-size:10.0pt;font-family:"MS UI Gothic","sans-serif"'>陳立群</span><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>; CABFPub<br><b>Subject:</b> Re: [cabfpub] Ballot 118 - SHA1 Sunset<o:p></o:p></span></p><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p><div><div><p class=MsoNormal style='margin-left:.5in'>Browser vendors have repeatedly responded to this - during the discussion of the ballot and during F2F.<o:p></o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'>To answer the specific question, "Will SHA-1 signed CRLs be accepted after January 1, 2017", the answer from multiple vendors has been:<o:p></o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'>On January 1, 2017, SHA-1-based signatures will no longer be accepted. The use of SHA-1 for non-signature purposes (e.g. the ReponderID construct, key hash, or cert ID) will remain accepted.<o:p></o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'>This should make it clear and unambiguous that CRLs and OCSP responses that are still signed with SHA-1 on or after January 1, 2017, will no longer validate. As such, a CA who continues to do so is effectively doing the same thing as providing an invalid CRL or OCSP response - and clients will not be able to use this for revocation information.<o:p></o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'>Focusing on things like "Will it show a warning" is counter-productive, because the answer has been consistently that "The signatures will not be accepted". If the signature is not accepted, the data cannot be used, ergo the CA will be unable to revoke certificates, the same as if they served an invalid CRL.<o:p></o:p></p></div><div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p></div></div><div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p><div><p class=MsoNormal style='margin-left:.5in'>On Fri, Oct 24, 2014 at 4:41 PM, Rick Andrews <<a href="mailto:Rick_Andrews@symantec.com" target="_blank">Rick_Andrews@symantec.com</a>> wrote:<o:p></o:p></p><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in'><span style='color:#1F497D'>Wen-Cheng, I agree that we should clarify this for the BRs.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in'><span style='color:#1F497D'>Browser vendors, please respond.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in'><span style='color:#1F497D'>-Rick</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in'><span style='color:#1F497D'> </span><o:p></o:p></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> </span><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>王文正</span><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> [mailto:<a href="mailto:wcwang@cht.com.tw" target="_blank">wcwang@cht.com.tw</a>] <br><b>Sent:</b> Thursday, October 23, 2014 8:52 PM<br><b>To:</b> Rick Andrews; </span><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>陳立群</span><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>; 'CABFPub'<br><b>Subject:</b> RE: [cabfpub] Ballot 118 - SHA1 Sunset</span><o:p></o:p></p></div></div><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>Rick,</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>Besides from the purpose of building CRLSets and OneCR, I think that since the current BR mandates Root CAs to issue CRL, it is necessary to clarify the SHA-1 validity period for signing CRL in section 9.4.2, otherwise we leave ambiguity in the BR.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>(Please refer to Appendix B of the BR, for the cRLDistributionPoints extension field of the Subordinate CA Certificate, it says “This extension MUST be present and MUST NOT be marked critical. It MUST contain the HTTP URL of the CA’s CRL service.” That implies that Root CAs MUST issue CRL.)</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>As for revocation checking mechanisms adopted by browsers, modern browsers indeed will check OCSP first. However, if the OCSP check failed after several retries, our observation (from our CA’s http access log) is that some browsers will do CRL fetching as a fallback.</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>Wen-Cheng Wang</span><o:p></o:p></p></div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a href="mailto:public-bounces@cabforum.org" target="_blank">public-bounces@cabforum.org</a> [<a href="mailto:public-bounces@cabforum.org" target="_blank">mailto:public-bounces@cabforum.org</a>] <b>On Behalf Of </b>Rick Andrews<br><b>Sent:</b> Friday, October 24, 2014 2:42 AM<br><b>To:</b> </span><span lang=ZH-TW style='font-size:10.0pt;font-family:SimSun;mso-fareast-language:ZH-TW'>陳立群</span><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>; 'CABFPub'<br><b>Subject:</b> Re: [cabfpub] Ballot 118 - SHA1 Sunset</span><o:p></o:p></p></div></div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>Li-Chun,</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>I don’t know the answer, but most (maybe all?) modern browsers don’t check CRLs today. However, I would re-state your question as “For the purpose of building CRLSets and OneCRL, will Google and Mozilla require CRLs to be signed with SHA-2 after 2017, or will they still accept CRLs signed with SHA-1?” Ryan Sleevi and Gerv Markham would have to answer this. </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>At the face-to-face meeting in Beijing, a similar question was discussed about OCSP. Here are notes from the minutes of the meeting:</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>“Bruce asked if those SHA-1 roots can still sign OCSP responses and CRLs with SHA-1? Microsoft doesn't use CRLs anymore, but Tom said that SHA-1 roots would have to switch to signing OCSP Responses with SHA-2. When that happens, though, the OCSP responses won't be usable by clients who don't support SHA-2. That could cause problems in 2017.”</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>(Note that the discussion was about OCSP, not CRLs)</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'>-Rick</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.0in'><span style='color:#1F497D'> </span><o:p></o:p></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a href="mailto:public-bounces@cabforum.org" target="_blank">public-bounces@cabforum.org</a> [<a href="mailto:public-bounces@cabforum.org" target="_blank">mailto:public-bounces@cabforum.org</a>] <b>On Behalf Of </b>???<br><b>Sent:</b> Thursday, October 23, 2014 4:00 AM<br><b>To:</b> 'CABFPub'<br><b>Subject:</b> Re: [cabfpub] Ballot 118 - SHA1 Sunset</span><o:p></o:p></p></div></div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='color:#1F497D'> </span><span style='color:blue'>We wonder if a SHA-1 Root CA sign SHA-1 CRL (or we have to say it is Certification Authority Revocation List, CARL) after Jan.,1,2017, will there be any warning message from application software?</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='color:blue'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='color:blue'>Sincerely Yours,</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='color:blue'> </span><o:p></o:p></p><p style='margin-left:1.5in'><span style='color:blue'> Li-Chun CHEN</span><o:p></o:p></p><p style='margin-left:1.5in'><span style='color:blue'> Engineer</span><o:p></o:p></p><p style='margin-left:1.5in;text-indent:174.0pt'><span style='color:blue'>CISSP, CISA, CISM, PMP,</span><o:p></o:p></p><p style='margin-left:1.5in;text-indent:174.0pt'><span style='color:blue'>Government Network Service Dept.</span><o:p></o:p></p><p style='margin-left:1.5in;text-indent:174.0pt'><span style='color:blue'>Data Communication Business Group</span><o:p></o:p></p><p style='margin-left:1.5in;text-indent:174.0pt'><span style='color:blue'>Chunghwa Telecom Co. Ltd.</span><o:p></o:p></p><p style='margin-left:1.5in;text-indent:174.0pt'><span style='color:blue'><a href="mailto:realsky@cht.com.tw" target="_blank">realsky@cht.com.tw</a></span><o:p></o:p></p><p style='margin-left:1.5in;text-indent:174.0pt'><span style='color:blue'><a href="tel:%2B886-2-2344-4820%234025" target="_blank">+886-2-2344-4820#4025</a></span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><span style='font-size:10.0pt;font-family:"Arial","sans-serif";color:#1F497D'> </span><o:p></o:p></p><div style='border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in 4.0pt'><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a href="mailto:public-bounces@cabforum.org" target="_blank">public-bounces@cabforum.org</a> [<a href="mailto:public-bounces@cabforum.org" target="_blank">mailto:public-bounces@cabforum.org</a>] <b>On Behalf Of </b>Ben Wilson<br><b>Sent:</b> Friday, October 03, 2014 4:56 AM<br><b>To:</b> CABFPub<br><b>Subject:</b> [cabfpub] Ballot 118 - SHA1 Sunset</span><o:p></o:p></p></div></div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><b>Ballot 118 - SHA1 Sunset</b> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>Kelvin Yiu of Microsoft made the following motion, and Kirk Hall from Trend Micro and Ryan Sleevi from Google have endorsed it. <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><b>Reason for Ballot</b> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>Over the last year or two, several application software providers have announced deprecation of the SHA-1 algorithm in their software. <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>-- Motion Begins -- <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>A. In the Baseline Requirements, insert the following new section 9.4.2: <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><b><u>9.4.2 SHA-1 Validity Period </u></b><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><u>Effective 1 January 2016, CAs MUST NOT issue any new Subscriber certificates or Subordinate CA certificates using the SHA-1 hash algorithm. CAs MAY continue to sign certificates to verify OCSP responses using SHA1 until 1 January 2017. This Section 9.4.2 does not apply to Root CA or CA cross certificates. CAs MAY continue to use their existing SHA-1 Root Certificates. SHA-2 Subscriber certificates SHOULD NOT chain up to a SHA-1 Subordinate CA Certificate. </u><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><u>Effective 16 January 2015, CAs SHOULD NOT issue Subscriber Certificates utilizing the SHA-1 algorithm with an Expiry Date greater than 1 January 2017 because Application Software Providers are in the process of deprecating and/or removing the SHA-1 algorithm from their software, and they have communicated that CAs and Subscribers using such certificates do so at their own risk. </u><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>B. In Appendix A of the Baseline Requirements - Cryptographic Algorithm and Key Requirements (Normative), add this note under Table 2, Subordinate CA certificates: <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><u>* SHA-1 MAY be used with RSA keys in accordance with the criteria defined in Section 9.4.2. </u><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>And amend this note at the end of each of the 3 tables. <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>* SHA-1 MAY be used with RSA keys in accordance with <u>the criteria defined in Section 9.4.2</u> <s>until SHA-256 is supported widely by browsers used by a substantial portion of relying-parties worldwide</s>. <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>-- Motion Ends -- <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'>The review period for this ballot shall commence at 2200 UTC on Thursday, 2 October 2014, and will close at 2200 UTC on Thursday, 9 October 2014. Unless the motion is withdrawn during the review period, the voting period will start immediately thereafter and will close at 2200 UTC on Thursday, 16 October 2014. Votes must be cast by posting an on-list reply to this thread. A vote in favor of the motion must indicate a clear 'yes' in the response. A vote against must indicate a clear 'no' in the response. A vote to abstain must indicate a clear 'abstain' in the response. Unclear responses will not be counted. The latest vote received from any representative of a voting member before the close of the voting period will be counted. Voting members are listed here: <a href="https://cabforum.org/members/" target="_blank">https://cabforum.org/members/</a> In order for the motion to be adopted, two thirds or more of the votes cast by members in the CA category and greater than 50% of the votes cast by members in the browser category must be in favor. Quorum is currently nine (9) members– at least nine members must participate in the ballot, either by voting in favor, voting against, or abstaining. <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'> <o:p></o:p></p></div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:1.5in'><b><span style='font-family:"PMingLiU","serif"'><br><br></span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>本信件可能包含中華電信股份有限公司機密資訊</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>非指定之收件者</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>請勿蒐集、處理或利用本信件內容</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>並請銷毀此信件</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>. </span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>如為指定收件者</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>應確實保護郵件中本公司之營業機密及個人資料</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>不得任意傳佈或揭露</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>並應自行確認本郵件之附檔與超連結之安全性</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>,</span></b><b><span lang=ZH-TW style='font-size:10.0pt;font-family:"PMingLiU","serif";mso-fareast-language:ZH-TW'>以共同善盡資訊安全與個資保護責任</span></b><b><span style='font-size:10.0pt;font-family:"PMingLiU","serif"'>. <br>Please be advised that this email message (including any attachments) contains confidential information and may be legally privileged. If you are not the intended recipient, please destroy this message and all attachments from your system and do not further collect, process, or use them. Chunghwa Telecom and all its subsidiaries and associated companies shall not be liable for the improper or incomplete transmission of the information contained in this email nor for any delay in its receipt or damage to your system. If you are the intended recipient, please protect the confidential and/or personal information contained in this email with due care. Any unauthorized use, disclosure or distribution of this message in whole or in part is strictly prohibited. Also, please self-inspect attachments and hyperlinks contained in this email to ensure the information security and to protect personal information.</span></b><span style='font-family:"PMingLiU","serif"'> </span><o:p></o:p></p></div></div></div></div><p class=MsoNormal style='mso-margin-top-alt:0in;margin-right:0in;margin-bottom:12.0pt;margin-left:.5in'><br>_______________________________________________<br>Public mailing list<br><a href="mailto:Public@cabforum.org">Public@cabforum.org</a><br><a href="https://cabforum.org/mailman/listinfo/public" target="_blank">https://cabforum.org/mailman/listinfo/public</a><o:p></o:p></p></div><p class=MsoNormal style='margin-left:.5in'><o:p> </o:p></p></div></div></body></html>