<html><div><br>
</div><div>The motion begins said</div><div>"...as previously approved by all ballots up to and including Ballot 176..."</div><div><br>
</div><div>But there is no Ballot 176 result in Quorum Calculator on Google Docs <a href="https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4">https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4</a></div><div><br>
</div><div>Also I can't find Ballot 176 in the new table in <a href="https://cabforum.org/ballots/">https://cabforum.org/ballots/</a></div><div><br>
</div><div>I only find in wiki <a href="https://www.cabforum.org/wiki/Ballots">https://www.cabforum.org/wiki/Ballots</a> ,</div><div>there is "176 - Addition of CNAME verification to domain validation methods". But after clicking that link, there is no any content about this ballot. </div><div><br>
</div><div><br>
</div><div>There are no content under SSL BR V1.41 in<br>
3.3.1. Identification and Authentication for Routine Re‐key</div><div><br>
</div><div>But there are some sentences in Ballot 180 and 181</div><div><font face="Arial">".......specified in the relevant requirement (such as Section 3.3.1 of this document) prior to certificate issuance....." </font></div><div><br>
</div><div>Would Kirk mind answering above questions? Thanks.</div><div><br>
</div><div><br>
</div><div> Li-Chun Chen</div><div> Chunghwa Telecom </div><div><br>
</div><div><br>
</div><div><br>
</div><div><br>
</div><div><br>
-----Original message-----<br>
<b>From:</b>Frank Corday via Public<public@cabforum.org><br>
<b>To:</b>CA/Browser Forum Public Discussion List<public@cabforum.org><br>
<b>Cc:</b>Frank Corday<FCorday@trustwave.com><br>
<b>Date: </b> Fri, 06 Jan 2017 23:47:55<br>
<b>Subject:</b> [外部郵件] Re: [cabfpub] Voting has started on Ballot 181 - ends January 7<br>
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Georgia;
panose-1:2 4 5 2 5 4 5 2 3 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin-top:0in;
margin-right:0in;
margin-bottom:8.0pt;
margin-left:0in;
line-height:105%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.MsoPlainText, li.MsoPlainText, div.MsoPlainText
{mso-style-priority:99;
mso-style-link:"Plain Text Char";
margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.PlainTextChar
{mso-style-name:"Plain Text Char";
mso-style-priority:99;
mso-style-link:"Plain Text";
font-family:"Calibri",sans-serif;}
p.line867, li.line867, div.line867
{mso-style-name:line867;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.line874, li.line874, div.line874
{mso-style-name:line874;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.line862, li.line862, div.line862
{mso-style-name:line862;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;
color:black;}
span.EmailStyle23
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle24
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:#1F497D;}
span.EmailStyle25
{mso-style-type:personal;
font-family:"Georgia",serif;
color:windowtext;
font-weight:normal;
font-style:normal;}
span.EmailStyle27
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:895506829;
mso-list-template-ids:-1621197760;}
@list l0:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div style="background-color: white;" width="100%"><x-body>
<div class="WordSection1">
<p class="MsoNormal">Trustwave votes Yes to 181<o:p></o:p></p>
<blockquote style="border-width: medium medium medium 4.5pt; border-style: none none none solid; border-color: currentColor currentColor currentColor rgb(181, 196, 223); margin: 5pt 0in 5pt 3.75pt; padding: 0in 0in 0in 4pt; border-image: none;">
<div>
<div>
<p class="MsoNormal">On 2017-Jan-02, 13:29, "Public on behalf of Kirk Hall via Public" <<a href="mailto:public-bounces@cabforum.org">public-bounces@cabforum.org</a> on behalf of
<a href="mailto:public@cabforum.org">public@cabforum.org</a>> wrote:<span style="line-height: 105%; font-size: 12pt;"><o:p></o:p></span></p>
</div>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<p class="MsoNormal" style="line-height: normal; margin-bottom: 0pt;">
<u>The voting period for Ballot 181 has started</u>, and will continue until <b><u>January 7, 2017 at 22:00 UTC</u></b>. The ballot is shown below. Please vote this week on this ballot and also on Ballot 180. Voting will occur on the Public list.<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="line867" style="background: white; margin: 0in 0in 0pt;"><strong><span style='color: black; font-family: "Arial",sans-serif; font-size: 11pt;'>Ballot 181 – Readopting BR 3.2.2.4 (Part 1)</span></strong><o:p></o:p></p>
<p class="line874" style="background: white; margin: 0in 0in 0pt;"><span style='color: black; font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="line874" style="background: white; margin: 0in 0in 0pt;"><span style='color: black; font-family: "Arial",sans-serif; font-size: 11pt;'>The following motion has been proposed by Kirk Hall of Entrust and endorsed by Peter Bowen of Amazon and Virginia
Fournier of Apple as a Final Guideline:</span><o:p></o:p></p>
<p class="line874" style="background: white; margin: 0in 0in 0pt;"><span style='color: black; font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="line874" style="background: white; margin: 0in 0in 0pt;"><span style='color: black; font-family: "Arial",sans-serif; font-size: 11pt;'>-- MOTION BEGINS –</span><o:p></o:p></p>
<p class="line874" style="background: white; margin: 0in 0in 0pt;"><span style='color: black; font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'>In accordance with the Bylaws and Intellectual Property Rights (IPR) Policy of the CA/Browser Forum (the “Forum”), the Forum Baseline Requirements (BR) and Extended Validation Guidelines (EVGL),
as previously approved by all ballots up to and including Ballot 176, are hereby readopted by this Ballot, with the following amendments.</span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'>1. BR 3.2.2.4 is amended to read in its entirety as follows:</span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4 Validation of Domain Authorization or Control</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>This section defines the permitted processes and procedures for validating the Applicant's ownership or control of the domain.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>The CA SHALL confirm that, as of the date the Certificate issues, either the CA or a Delegated Third Party has validated each Fully-Qualified Domain Name (FQDN) listed in the Certificate using at least
one of the methods listed below.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>Completed confirmations of Applicant authority may be valid for the issuance of multiple certificates over time. In all cases, the confirmation must have been initiated within the time period specified
in the relevant requirement (such as Section 3.3.1 of this document) prior to certificate issuance. For purposes of domain validation, the term Applicant includes the Applicant's Parent Company, Subsidiary Company, or Affiliate.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>Note: FQDNs may be listed in Subscriber Certificates using dNSNames in the subjectAltName extension or in Subordinate CA Certificates via dNSNames in permittedSubtrees within the Name Constraints extension.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.1 [Reserved] </span>
</b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.2 [Reserved] </span>
</b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'> </span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.3 [Reserved]</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'> </span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.4 [Reserved]</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.5 Domain Authorization Document</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>Confirming the Applicant's control over the requested FQDN by relying upon the attestation to the authority of the Applicant to request a Certificate contained in a Domain Authorization Document. The
Domain Authorization Document MUST substantiate that the communication came from the Domain Contact. The CA MUST verify that the Domain Authorization Document was either (i) dated on or after the date of the domain validation request or (ii) that the WHOIS
data has not materially changed since a previously provided Domain Authorization Document for the Domain Name Space.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.6 Agreed-Upon Change to Website</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>Confirming the Applicant's control over the requested FQDN by confirming one of the following under the "/.well-known/pki-validation" directory, or another path registered with IANA for the purpose of
Domain Validation, on the Authorization Domain Name that is accessible by the CA via HTTP/HTTPS over an Authorized Port:</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; text-indent: -0.25in; margin-right: 0in; margin-bottom: 0pt; margin-left: 1in; mso-margin-top-alt: 0in; mso-list: l0 level1 lfo2;">
<!--[if !supportLists]--><span style="mso-list: Ignore;">1.<span style='font: 7pt/normal "Times New Roman"; font-size-adjust: none; font-stretch: normal;'>
</span></span><!--[endif]--><span style='color: black; font-family: "Arial",sans-serif;'>The presence of Required Website Content contained in the content of a file or on a web page in the form of a meta tag. The entire Required Website Content MUST NOT appear in the
request used to retrieve the file or web page, or</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 1in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; text-indent: -0.25in; margin-right: 0in; margin-bottom: 0pt; margin-left: 1in; mso-margin-top-alt: 0in; mso-list: l0 level1 lfo2;">
<!--[if !supportLists]--><span style="mso-list: Ignore;">2.<span style='font: 7pt/normal "Times New Roman"; font-size-adjust: none; font-stretch: normal;'>
</span></span><!--[endif]--><span style='color: black; font-family: "Arial",sans-serif;'>The presence of the Request Token or Request Value contained in the content of a file or on a webpage in the form of a meta tag where the Request Token or Random Value MUST NOT
appear in the request.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.75in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>If a Random Value is used, the CA or Delegated Third Party SHALL provide a Random Value unique to the certificate request and SHALL not use the Random Value after the longer of (i) 30 days or (ii) if
the Applicant submitted the certificate request, the timeframe permitted for reuse of validated information relevant to the certificate (such as in Section 3.3.1 of these Guidelines or Section 11.14.3 of the EV Guidelines).</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>Note: Examples of Request Tokens include, but are not limited to: (i) a hash of the public key; (ii) a hash of the Subject Public Key Info [X.509]; and (iii) a hash of a PKCS#10 CSR. A Request Token may
also be concatenated with a timestamp or other data. If a CA wanted to always use a hash of a PKCS#10 CSR as a Request Token and did not want to incorporate a timestamp and did want to allow certificate key re-use then the applicant might use the challenge
password in the creation of a CSR with OpenSSL to ensure uniqueness even if the subject and key are identical between subsequent requests. This simplistic shell command produces a Request Token which has a timestamp and a hash of a CSR. E.g. echo date -u +%Y%m%d%H%M
sha256sum <r2.csr | sed "s/[ -]//g" The script outputs: 201602251811c9c863405fe7675a3988b97664ea6baf442019e4e52fa335f406f7c5f26cf14f The CA should define in its CPS (or in a document referenced from the CPS) the format of Request Tokens it accepts.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.7 [Reserved]</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'> </span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.8 [Reserved]</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'> </span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.9 [Reserved]</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.10. TLS Using a Random Number</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>Confirming the Applicant's control over the requested FQDN by confirming the presence of a Random Value within a Certificate on the Authorization Domain Name which is accessible by the CA via TLS over
an Authorized Port.</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'> </span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<b><span style='color: black; font-family: "Arial",sans-serif;'>3.2.2.4.11 Other Methods</span></b><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'>The CA SHALL confirm that, as of the date the Certificate issues, either the CA or a Delegated Third Party has validated each Fully-Qualified Domain Name (FQDN) listed in the Certificate
</span><span style='font-family: "Arial",sans-serif;'>by using any method of confirmation, provided that the CA maintains documented evidence that the method of confirmation establishes that the Applicant is the Domain Name Registrant or has control over the
Fully Qualified Domain Name (FQDN).</span><o:p></o:p></p>
<p class="MsoNormal" style="background: white; line-height: normal; margin-right: 0in; margin-bottom: 0pt; margin-left: 0.5in; mso-margin-top-alt: 0in;">
<span style='color: black; font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'>In the event that this Ballot and Ballot 180 are both approved by the Forum, the provisions of this Ballot shall supersede and replace any conflicting provisions of Ballot 180.</span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'>The proposer and endorsers of this Ballot may withdraw this Ballot at any time prior to completion of the final vote for approval, in which case the Ballot will not proceed further.</span><o:p></o:p></p>
<p class="MsoPlainText"><span style='font-family: "Arial",sans-serif;'> </span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt;"><b><span style='font-family: "Arial",sans-serif; font-size: 11pt;'>-- MOTION ENDS –
</span></b><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'>The procedure for this Maintenance Guideline ballot is as follows (exact start and end times may be adjusted to comply with applicable
Bylaws and IPR Agreement):</span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<table class="MsoNormalTable" style="border-collapse: collapse;" border="0" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td width="306" valign="top" style="padding: 0in 5.4pt; border: 1pt solid windowtext; border-image: none; width: 229.25pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>BALLOT 181</span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Status: Final Guideline</span><o:p></o:p></p>
</td>
<td width="110" valign="top" style="border-width: 1pt 1pt 1pt medium; border-style: solid solid solid none; border-color: windowtext windowtext windowtext currentColor; padding: 0in 5.4pt; border-image: none; width: 82.4pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Start time (22:00 UTC)</span><o:p></o:p></p>
</td>
<td width="118" valign="top" style="border-width: 1pt 1pt 1pt medium; border-style: solid solid solid none; border-color: windowtext windowtext windowtext currentColor; padding: 0in 5.4pt; border-image: none; width: 88.6pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>End time (22:00 UTC)</span><o:p></o:p></p>
</td>
</tr>
<tr>
<td width="306" valign="top" style="border-width: medium 1pt 1pt; border-style: none solid solid; border-color: currentColor windowtext windowtext; padding: 0in 5.4pt; border-image: none; width: 229.25pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Discussion (7 days)</span><o:p></o:p></p>
</td>
<td width="110" valign="top" style="border-width: medium 1pt 1pt medium; border-style: none solid solid none; border-color: currentColor windowtext windowtext currentColor; padding: 0in 5.4pt; width: 82.4pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Oct. 25, 2016</span><o:p></o:p></p>
</td>
<td width="118" valign="top" style="border-width: medium 1pt 1pt medium; border-style: none solid solid none; border-color: currentColor windowtext windowtext currentColor; padding: 0in 5.4pt; width: 88.6pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Nov. 1, 2016</span><o:p></o:p></p>
</td>
</tr>
<tr>
<td width="306" valign="top" style="border-width: medium 1pt 1pt; border-style: none solid solid; border-color: currentColor windowtext windowtext; padding: 0in 5.4pt; border-image: none; width: 229.25pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Review Period (Chair to send Review Notice) (60 days).
</span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>If Exclusion Notice(s) filed, PAG to be created and no further action until PAG recommendations received.</span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>If no Exclusion Notice(s) filed, proceed to:</span><o:p></o:p></p>
</td>
<td width="110" valign="top" style="border-width: medium 1pt 1pt medium; border-style: none solid solid none; border-color: currentColor windowtext windowtext currentColor; padding: 0in 5.4pt; width: 82.4pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Nov. 1, 2016</span><o:p></o:p></p>
</td>
<td width="118" valign="top" style="border-width: medium 1pt 1pt medium; border-style: none solid solid none; border-color: currentColor windowtext windowtext currentColor; padding: 0in 5.4pt; width: 88.6pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Dec. 31, 2016</span><o:p></o:p></p>
</td>
</tr>
<tr>
<td width="306" valign="top" style="border-width: medium 1pt 1pt; border-style: none solid solid; border-color: currentColor windowtext windowtext; padding: 0in 5.4pt; border-image: none; width: 229.25pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Vote for approval (7 days)</span><o:p></o:p></p>
</td>
<td width="110" valign="top" style="border-width: medium 1pt 1pt medium; border-style: none solid solid none; border-color: currentColor windowtext windowtext currentColor; padding: 0in 5.4pt; width: 82.4pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Dec. 31, 2016</span><o:p></o:p></p>
</td>
<td width="118" valign="top" style="border-width: medium 1pt 1pt medium; border-style: none solid solid none; border-color: currentColor windowtext windowtext currentColor; padding: 0in 5.4pt; width: 88.6pt;">
<p class="line874" style="margin: 0in 0in 0pt; line-height: 105%;"><span style='line-height: 105%; font-family: "Arial",sans-serif; font-size: 11pt;'>Jan. 7, 2017</span><o:p></o:p></p>
</td>
</tr>
</tbody>
</table>
<p class="line874" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'>Votes must be cast by posting an on-list reply to this thread on the Public list.
</span><o:p></o:p></p>
<p class="line874" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="line862" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'>A vote in favor of the motion must indicate a clear 'yes' in the response. A vote against must indicate a clear 'no' in the response. A
vote to abstain must indicate a clear 'abstain' in the response. Unclear responses will not be counted. The latest vote received from any representative of a voting member before the close of the voting period will be counted. Voting members are listed here:
</span><a href="https://scanmail.trustwave.com/?c=4062&d=t8Dt2GnZBwvrDd4hln0BRlMOka9hrZLImTysFrtyhA&s=5&u=https%3a%2f%2fcabforum%2eorg%2fmembers%2f"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'>https://cabforum.org/members/</span></a><span style='font-family: "Arial",sans-serif; font-size: 11pt;'>
</span><o:p></o:p></p>
<p class="line862" style="margin: 0in 0in 0pt;"><span style='font-family: "Arial",sans-serif; font-size: 11pt;'> </span><o:p></o:p></p>
<p class="MsoNormal" style="line-height: normal; margin-bottom: 0pt;">
<span style='font-family: "Arial",sans-serif;'>In order for the motion to be adopted, two thirds or more of the votes cast by members in the CA category and greater than 50% of the votes cast by members in the browser category must be in favor.
<span style="background: white; color: black;">Quorum is currently ten (10) members – at least ten members must participate in the ballot, either by voting in favor, voting against, or abstaining.</span></span><o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
</blockquote>
</div>
<br>
<hr>
<font color="gray" face="Arial" size="1"><br>
This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information
contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format.<br>
</font>
</x-body>
</div>_______________________________________________<br>
Public mailing list<br>
Public@cabforum.org<br>
<a href="https://cabforum.org/mailman/listinfo/public" target="new_win">https://cabforum.org/mailman/listinfo/public</a><br>
<br>
</div></html><br><html><div><div>本信件可能包含中華電信股份有限公司機密資訊,非指定之收件者,請勿蒐集、處理或利用本信件內容,並請銷毀此信件. 如為指定收件者,應確實保護郵件中本公司之營業機密及個人資料,不得任意傳佈或揭露,並應自行確認本郵件之附檔與超連結之安全性,以共同善盡資訊安全與個資保護責任. </div><div>Please be advised that this email message (including any attachments) contains confidential information and may be legally privileged. If you are not the intended recipient, please destroy this message and all attachments from your system and do not further collect, process, or use them. Chunghwa Telecom and all its subsidiaries and associated companies shall not be liable for the improper or incomplete transmission of the information contained in this email nor for any delay in its receipt or damage to your system. If you are the intended recipient, please protect the confidential and/or personal information contained in this email with due care. Any unauthorized use, disclosure or distribution of this message in whole or in part is strictly prohibited. Also, please self-inspect attachments and hyperlinks contained in this email to ensure the information security and to protect personal information.</div></div><div><br></div><div><br></div></html>