<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On Wed, Nov 9, 2016 at 11:38 AM, Peter Bowen <span dir="ltr"><<a href="mailto:pzb@amzn.com" target="_blank">pzb@amzn.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word"><br><div><blockquote type="cite"><span class=""><div>On Nov 9, 2016, at 11:17 AM, Ryan Sleevi <<a href="mailto:sleevi@google.com" target="_blank">sleevi@google.com</a>> wrote:</div><br class="m_1067829691193974815Apple-interchange-newline"></span><div><div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote"><span class="">On Wed, Nov 9, 2016 at 11:06 AM, Peter Bowen <span dir="ltr"><<a href="mailto:pzb@amzn.com" target="_blank">pzb@amzn.com</a>></span> wrote:</span><span class=""><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word"><div>Even if we ignore WebTrust, what is the path to revert the change if evidence is shown it is causing harm?</div></div></blockquote><div><br></div><div>A ballot? :) </div></span></div></div></div>
</div></blockquote></div><br><div>My question was more what evidence will Google accept that it should be reverted?</div></div></blockquote><div><br></div><div>Doesn't that depend on the situation and the ballot? And what the broader Forum feels in its discussion of the issue? Hasn't the SHA-1 exception procedure showed that with additional data, people can make informed decisions that weigh the tradeoffs? Or with the EV for onion discussions that we can find technical solutions that balance the concerns while allow for greater flexibility? </div></div><br></div></div>