<html><div><x-body><div class="WordSection1"><p class="MsoNormal"><span style="color: rgb(31, 73, 125);">Chunghwa Telecom Co., Ltd. votes “Yes”</span></p><p class="MsoNormal"><span style="color: rgb(31, 73, 125);"><br>
</span></p><p class="MsoNormal"><span style="color: rgb(31, 73, 125);"> Li-Chun CHEN</span></p><p class="MsoNormal"><span style="color: rgb(31, 73, 125);"><o:p> </o:p></span></p><div><div style="border-width: 1pt medium medium; border-style: solid none none; border-color: rgb(225, 225, 225) currentColor currentColor; padding: 3pt 0in 0in; border-image: none;"><p class="MsoNormal"><b>From:</b> public-bounces@cabforum.org [mailto:public-bounces@cabforum.org] <b>On Behalf Of </b>Ben Wilson<br>
<b>Sent:</b> Friday, June 24, 2016 11:56 AM<br>
<b>To:</b> Barreira Iglesias, Iñigo <i-barreira@izenpe.eus>; 'public@cabforum.org' <public@cabforum.org><br>
<b>Subject:</b> Re: [cabfpub] ballot 171-updating ETSI Standards in CABF documents<o:p></o:p></p></div></div><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal">I’ve updated the text in GitHub and in so doing made a few minor grammatical changes to the proposed revision of section 17.4 of the EV Guidelines so that it would read as follows:<o:p></o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal">(4) If the CA does not have a currently valid WebTrust Seal of Assurance for CAs or an ETSI TS 102 042 EVCP audit or an ETSI EN 319 411-1 audit for EVCP policy, then, before issuing EV Certificates, the CA and its Root CA MUST successfully complete either: (i) a point-in-time readiness assessment audit against the WebTrust for CA Program, or (ii) a point-in-time readiness assessment audit against the WebTrust EV Program, the ETSI TS 102 042 EVCP, or the ETSI EN 319 411-1 for EVCP policy. <o:p></o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal">IMHO – I think we could start voting on the revised ballot at 2200 UTC because the changes to the language have been relatively minor since the ballot was released last week.<o:p></o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal">Ben<o:p></o:p></p><p class="MsoNormal"><a name="_MailEndCompose"><o:p> </o:p></a></p><div><div style="border-width: 1pt medium medium; border-style: solid none none; border-color: rgb(225, 225, 225) currentColor currentColor; padding: 3pt 0in 0in; border-image: none;"><p class="MsoNormal"><b>From:</b> <a href="mailto:public-bounces@cabforum.org">public-bounces@cabforum.org</a> [<a href="mailto:public-bounces@cabforum.org">mailto:public-bounces@cabforum.org</a>] <b>On Behalf Of </b>Barreira Iglesias, Iñigo<br>
<b>Sent:</b> Friday, June 24, 2016 4:47 AM<br>
<b>To:</b> 'public@cabforum.org' <<a href="mailto:public@cabforum.org">public@cabforum.org</a>><br>
<b>Subject:</b> [cabfpub] ballot 171-updating ETSI Standards in CABF documents<o:p></o:p></p></div></div><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">Hi,<o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><o:p> </o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">This is how the ballot will look like accepting the changes proposed by Erwann. As this has been done during the review period, and then the changes accepted during this period, would be enough to resubmit again as it is, or should we go thru another review period of 1 week. I´m not familiar with the procedure so if it´s ok as it´s now, the voting period will start tonight I think.<o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">Regards<o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><o:p> </o:p></p><p><strong>Ballot 171 – Updating the ETSI standards in the CABF documents</strong><o:p></o:p></p><p>The following motion has been proposed by Iñigo Barreira of Izenpe and endorsed by Mads Henriksveen of Buypass, Jochem van den Berge of Logius PKIoverheid and Arno Fiedler of D-trust <o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><o:p> </o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">-- MOTION BEGINS – <o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><b>In the BRs,</b><o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">In section 1.6.3 References, change:<o:p></o:p></p><p class="MsoNormal"><span style='font-family: "Cambria",serif; font-size: 10pt;'>ETSI TS 119 403, Electronic Signatures and Infrastructures (ESI); Trust Service Provider Conformity Assessment ‐ General Requirements and Guidance.</span><o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">With<span style='font-family: "Times New Roman",serif;'><o:p></o:p></span></p><p class="MsoNormal">ETSI EN 319 403, Electronic Signatures and Infrastructures (ESI); Trust Service Provider Conformity Assessment - Requirements for conformity assessment bodies assessing Trust Service Providers<o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal">and add:<o:p></o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal">ETSI EN 319 411-1, Electronic Signatures and Infrastructures (ESI); Policy and security requirements for Trust Service Providers issuing certificates;<o:p></o:p></p><p class="MsoNormal">Part 1: General requirements<o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">In section 8.2 Identity/qualification of assessor, point 4, change:<span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">4. (For audits conducted in accordance with any one of the ETSI standards) accredited in accordance with ETSI TS 119 403, or accredited to conduct such audits under an equivalent national scheme, or accredited by a national accreditation body in line with ISO 27006 to carry out ISO 27001 audits;</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-size: 11.5pt;">With</span><span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal" style="margin-right: 0in; margin-bottom: 6pt; margin-left: 0.25in; mso-margin-top-alt: 0in;"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">4. (For audits conducted in accordance with any one of the ETSI standards) </span><span style='font-family: "Times New Roman ,serif";'>accredited in accordance with ISO 17065 applying the requirements specified in ETSI EN 319 403</span><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">;</span><o:p></o:p></p><p class="MsoNormal" style="margin-right: 0in; margin-bottom: 6pt; margin-left: 0.25in; mso-margin-top-alt: 0in;"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;">In section 8.4 Topics covered by assessment, point 2, change:<span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">2. A national scheme that audits conformance to ETSI TS 102 042;</span><o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><span style='font-family: "Helvetica",sans-serif; font-size: 11.5pt;'>With</span><o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">2. A national scheme that audits conformance to ETSI TS 102 042/ ETSI EN 319 411-1; </span><o:p></o:p></p><p class="MsoNormal"><b>In the EV guidelines,</b><o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal">In section 8.2.1 Implementation, point (B), change:<o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(B)</span><span style="font-family: Symbol; font-size: 10pt;"> </span><span style="font-family: SymbolMT; font-size: 10pt;"> </span><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">Implement the requirements of (i) the then-current WebTrust Program for CAs, and (ii) the then-current WebTrust</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">EV Program or ETSI TS 102 042; and</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-size: 11.5pt;">With</span><span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(B)</span><span style="font-family: Symbol; font-size: 10pt;"> </span><span style="font-family: SymbolMT; font-size: 10pt;"> </span><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">Implement the requirements of (i) the then-current WebTrust Program for CAs, and (ii) the then-current WebTrust</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">EV Program or ETSI TS 102 042 for EVCP or ETSI EN 319 411-1 for EVCP policy; and</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal">In section 8.2.2 Disclosure, change:<o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">The CA is also REQUIRED to publicly disclose its CA business practices as required by both WebTrust for CAs and ETSI TS 102 042.</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-size: 11.5pt;">With</span><span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">The CA is also REQUIRED to publicly disclose its CA business practices as required by WebTrust for CAs and ETSI TS 102 042 and ETSI EN 319 411-1.</span><span style="font-size: 12pt;"><o:p></o:p></span></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal">In section 17.1 Eligible audit schemes, point (ii), change:<o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(ii) ETSI TS 102 042 audit</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-size: 11.5pt;">With</span><span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(ii) ETSI TS 102 042 audit for EVCP, or </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(iii) ETSI EN 319 411-1 audit for EVCP policy</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal">In section 17.4 pre-issuance readiness audit, after point (2), add:<o:p></o:p></p><p class="MsoNormal"> <o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(3) If the CA has a currently valid ETSI EN 319 411-1 audit for EVCP policy, then, before issuing EV Certificates, the CA and its Root CA MUST successfully complete a point-in-time readiness assessment audit against ETSI EN 319 411-1 for EVCP.</span><o:p></o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal"><span style="font-size: 11.5pt;">and change:</span><span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(3) If the CA does not have a currently valid WebTrust Seal of Assurance for CAs or an ETSI 102 042 audit, then, before</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">issuing EV Certificates, the CA and its Root CA MUST successfully complete either: (i) a point-in-time readiness</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">assessment audit against the WebTrust for CA Program, or (ii) a point-in-time readiness assessment audit against the</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">WebTrust EV Program, or an ETSI TS 102 042 audit.</span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-size: 11.5pt;">With</span><span style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;"> </span><o:p></o:p></p><p class="MsoNormal"><span style="font-family: TimesNewRomanPSMT; font-size: 10pt;">(4) If the CA does not have a currently valid WebTrust Seal of Assurance for CAs or or an ETSI TS 102 042 EVCP or an ETSI EN 319 411-1 audit for EVCP policy, then, before issuing EV Certificates, the CA and its Root CA MUST successfully complete either: (i) a point-in-time readiness assessment audit against the WebTrust for CA Program, or (ii) a point-in-time readiness assessment audit against the WebTrust EV Program, or an ETSI TS 102 042 EVCP, or an ETSI EN 319 411-1 for EVCP policy.</span><o:p></o:p></p><p class="MsoNormal" style="mso-margin-top-alt: auto; mso-margin-bottom-alt: auto;"><span lang="ES">-- MOTION ENDS -- </span><span lang="ES" style='font-family: "Times New Roman",serif; font-size: 12pt;'><o:p></o:p></span></p><p>The review period for this ballot shall commence at 2200 UTC on 17 June 2016, and will close at 2200 UTC on 24 June 2016. Unless the motion is withdrawn during the review period, the voting period will start immediately thereafter and will close at 2200 UTC on 1 July 2016. Votes must be cast by posting an on-list reply to this thread. <o:p></o:p></p><p>A vote in favor of the motion must indicate a clear 'yes' in the response. A vote against must indicate a clear 'no' in the response. A vote to abstain must indicate a clear 'abstain' in the response. Unclear responses will not be counted. The latest vote received from any representative of a voting member before the close of the voting period will be counted. Voting members are listed here: <a href="https://cabforum.org/members/" target="_blank">https://cabforum.org/members/</a> <o:p></o:p></p><p>In order for the motion to be adopted, two thirds or more of the votes cast by members in the CA category and greater than 50% of the votes cast by members in the browser category must be in favor. Quorum is currently ten (10) members– at least ten members must participate in the ballot, either by voting in favor, voting against, or abstaining. <o:p></o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal"><o:p> </o:p></p><p class="MsoNormal"><span style="mso-fareast-language: ES;"><o:p> </o:p></span></p><p class="MsoNormal" style="line-height: 9.75pt;"><b><span lang="ES-TRAD" style='color: black; font-family: "Tahoma",sans-serif; font-size: 8.5pt; mso-fareast-language: ES;'>Iñigo Barreira</span></b><span lang="ES-TRAD" style='color: black; font-family: "Tahoma",sans-serif; font-size: 8.5pt; mso-fareast-language: ES;'><br>
Responsable del Área técnica<br>
<a href="mailto:i-barreira@izenpe.eus">i-barreira@izenpe.eus</a> <o:p></o:p></span></p><p class="MsoNormal"><span lang="ES-TRAD" style='color: black; font-family: "Tahoma",sans-serif; font-size: 8.5pt; mso-fareast-language: ES;'>945067705</span><span lang="ES-TRAD" style="color: rgb(31, 73, 125); mso-fareast-language: ES;"><o:p></o:p></span></p><p class="MsoNormal"><span lang="ES-TRAD" style="mso-fareast-language: ES;"><o:p> </o:p></span></p><p class="MsoNormal"><span lang="ES" style="color: navy; mso-fareast-language: ES;"><img width="589" height="99" id="Imagen_x0020_1" alt="Descripción: firma_email_Izenpe_eus" src="cid:5776951D$21EE2D2realsky@cht.com.tw" border="0"><o:p></o:p></span></p><p class="MsoNormal"><span lang="ES-TRAD" style="mso-fareast-language: ES;"><o:p> </o:p></span></p><p class="MsoNormal" style="line-height: 9.75pt;"><span lang="ES" style='color: rgb(136, 136, 136); font-family: "Tahoma",sans-serif; font-size: 7.5pt; mso-fareast-language: ES-TRAD;'>ERNE! Baliteke mezu honen zatiren bat edo mezu osoa legez babestuta egotea. Mezua badu bere hartzailea. Okerreko helbidera heldu bada (helbidea gaizki idatzi, transmisioak huts egin) eman abisu igorleari, korreo honi erantzuna. KONTUZ!</span><span lang="ES" style="color: rgb(136, 136, 136); mso-fareast-language: ES-TRAD;"><br>
</span><span lang="ES" style='color: rgb(136, 136, 136); font-family: "Tahoma",sans-serif; font-size: 7.5pt; mso-fareast-language: ES-TRAD;'>ATENCION! Este mensaje contiene informacion privilegiada o confidencial a la que solo tiene derecho a acceder el destinatario. Si usted lo recibe por error le agradeceriamos que no hiciera uso de la informacion y que se pusiese en contacto con el remitente.</span><span lang="ES" style="color: navy; font-size: 12pt; mso-fareast-language: ES-TRAD;"><o:p></o:p></span></p><p class="MsoNormal"><span lang="ES"><o:p> </o:p></span></p></div></x-body>_______________________________________________<br>
Public mailing list<br>
Public@cabforum.org<br>
<a href="https://cabforum.org/mailman/listinfo/public" target="new_win">https://cabforum.org/mailman/listinfo/public</a><br>
<br>
</div></html><br><html><div><div>本信件可能包含中華電信股份有限公司機密資訊,非指定之收件者,請勿蒐集、處理或利用本信件內容,並請銷毀此信件. 如為指定收件者,應確實保護郵件中本公司之營業機密及個人資料,不得任意傳佈或揭露,並應自行確認本郵件之附檔與超連結之安全性,以共同善盡資訊安全與個資保護責任. </div><div>Please be advised that this email message (including any attachments) contains confidential information and may be legally privileged. If you are not the intended recipient, please destroy this message and all attachments from your system and do not further collect, process, or use them. Chunghwa Telecom and all its subsidiaries and associated companies shall not be liable for the improper or incomplete transmission of the information contained in this email nor for any delay in its receipt or damage to your system. If you are the intended recipient, please protect the confidential and/or personal information contained in this email with due care. Any unauthorized use, disclosure or distribution of this message in whole or in part is strictly prohibited. Also, please self-inspect attachments and hyperlinks contained in this email to ensure the information security and to protect personal information.</div></div><div><br></div><div><br></div></html>