<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">On 11/3/2017 7:20 μμ, Kirk Hall via
Public wrote:<br>
</div>
<blockquote
cite="mid:07b403e031d74bdf8b571c12e155c72f@pmspex02.corporate.datacard.com"
type="cite">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered
medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin-top:0in;
margin-right:0in;
margin-bottom:8.0pt;
margin-left:0in;
line-height:105%;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.line874, li.line874, div.line874
{mso-style-name:line874;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.line862, li.line862, div.line862
{mso-style-name:line862;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;
color:black;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle20
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle21
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="WordSection1">
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
Voting has started on Ballot 193 - 825-day Certificate
Lifetimes (shown below and attached). Voting will end on
Friday, March 17, 2017 at 23:00 UTC.</p>
</div>
</blockquote>
<br>
<br>
HARICA votes "yes" to ballot 193.<br>
<br>
Dimitris.<br>
<br>
<blockquote
cite="mid:07b403e031d74bdf8b571c12e155c72f@pmspex02.corporate.datacard.com"
type="cite">
<div class="WordSection1">
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal"><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p> </o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
*********<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<b>Ballot 193 - 825-day Certificate Lifetimes (REVISED v2 –
March 2, 2017)</b><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<b>Purpose of Ballot:</b> Recent Ballot 185 demonstrated a
consensus among Forum members to reduce the maximum lifetime
for DV and OV certificates from 39 months to 825 days (roughly
27 months). This ballot reflects that consensus, and also
reduces the maximum period for reuse of vetting data for DV
and OV certificates from 39 months to 27 months.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
The following motion has been proposed by Chris Bailey of
Entrust Datacard and endorsed by the following CA/B Forum
member representatives (listed in alphabetical order) Robin
Alden of Comodo, Ben Wilson of DigiCert, and Doug Beattie of
GlobalSign to introduce new Final Maintenance Guidelines for
the "Baseline Requirements Certificate Policy for the Issuance
and Management of Publicly-Trusted Certificates" (Baseline
Requirements) and the "Guidelines for the Issuance and
Management of Extended Validation Certificates" (EV
Guidelines).<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
-- MOTION BEGINS -- <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b>BR
4.2.1. Performing Identification and Authentication
Functions</b><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none">The
certificate request MAY include all factual information about
the Applicant to be included in the Certificate, and such
additional information as is necessary for the CA to obtain
from the Applicant in order to comply with these Requirements
and the CA’s Certificate Policy and/or Certification Practice
Statement. In cases where the certificate request does not
contain all the necessary information about the Applicant, the
CA SHALL obtain the remaining information from the Applicant
or, having obtained it from a reliable, independent,
third‐party data source, confirm it with the Applicant. The CA
SHALL establish and follow a documented procedure for
verifying all data requested for inclusion in the Certificate
by the Applicant.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none">Applicant
information MUST include, but not be limited to, at least one
Fully‐Qualified Domain Name or IP address to be included in
the Certificate’s SubjectAltName extension.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none">Section
6.3.2 limits the validity period of Subscriber Certificates.
The CA MAY use the documents and data provided in Section 3.2
to verify certificate information, provided that the CA
obtained the data or document from a source specified under
Section 3.2 no more than <b><u>825 days</u> </b><i><s>thirty‐nine
(39) months</s></i> prior to issuing the Certificate.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none">The
CA SHALL develop, maintain, and implement documented
procedures that identify and require additional verification
activity for High Risk Certificate Requests prior to the
Certificate’s approval, as reasonably necessary to ensure that
such requests are properly verified under these Requirements.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
If a Delegated Third Party fulfills any of the CA’s
obligations under this section, the CA SHALL verify that the
process used by the Delegated Third Party to identify and
further verify High Risk Certificate Requests provides at
least the same level of assurance as the CA’s own processes.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b>BR
6.3.2. Certificate Operational Periods and Key Pair Usage
Periods</b><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none">Subscriber
Certificates issued after <b><u>March 1, 2018 </u></b><i><s>the
Effective Date</s></i> MUST have a Validity Period no
greater than
<b><u>825 days</u> </b><i><s>60 months</s></i>. <b><u>Subscriber
Certificates issued after 1 July 2016
<i><s>April 2015</s></i> but prior to 1 March 2018 MUST <i><s>NOT</s></i>
have a Validity Period no greater than thirty-nine (39)
months.</u></b><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s>Except
as provided for below, Subscriber Certificates issued
after 1 April 2015 MUST have a Validity Period no greater
than 39 months.</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i> </i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s>Until
30 June 2016, CAs MAY continue to issue Subscriber
Certificates with a Validity Period greater than 39 months
but not greater than 60 months provided that the CA
documents that the Certificate is for a system or software
that:</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i> </i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s>(a)
was in use prior to the Effective Date;</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s>(b)
is currently in use by either the Applicant or a
substantial number of Relying Parties;</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s>(c)
fails to operate if the Validity Period is shorter than 60
months;</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s>(d)
does not contain known security risks to Relying Parties;
and</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal">
<i><s>(e) is difficult to patch or replace without substantial
economic outlay.</s></i><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b> </b><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b>EVGL
9.4. Maximum Validity Period For EV Certificate</b><o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none">The
validity period for an EV Certificate SHALL NOT exceed <b><u>825
days</u></b>
<i><s>twenty seven months</s></i>. It is RECOMMENDED that EV
Subscriber Certificates have a maximum validity period of
twelve months.<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="MsoNormal">-- MOTION ENDS --<o:p></o:p></p>
<p class="MsoNormal"
style="margin-bottom:0in;margin-bottom:.0001pt;line-height:normal;text-autospace:none"> <o:p></o:p></p>
<p class="line874" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif">The
procedure for approval of this Final Maintenance Guideline
ballot is as follows (exact start and end times may be
adjusted to comply with applicable Bylaws and IPR
Agreement):</span><o:p></o:p></p>
<p class="line874" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span><o:p></o:p></p>
<table class="MsoNormalTable" style="border-collapse:collapse"
border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="459">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">BALLOT
193</span><o:p></o:p></p>
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Status:
Final Maintenance Guideline</span><o:p></o:p></p>
</td>
<td style="width:82.4pt;border:solid windowtext
1.0pt;border-left:none;padding:0in 5.4pt 0in 5.4pt"
valign="top" width="165">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;text-align:center;line-height:105%"
align="center">
<span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Start
time (23:00 UTC)</span><o:p></o:p></p>
</td>
<td style="width:79.35pt;border:solid windowtext
1.0pt;border-left:none;padding:0in 5.4pt 0in 5.4pt"
valign="top" width="159">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;text-align:center;line-height:105%"
align="center">
<span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">End
time (23:00 UTC)</span><o:p></o:p></p>
</td>
</tr>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;border-top:none;padding:0in 5.4pt 0in 5.4pt"
valign="top" width="459">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Discussion
(7 to 14 days)</span><o:p></o:p></p>
</td>
<td
style="width:82.4pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="165">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;text-align:center;line-height:105%"
align="center">
<span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">March
3</span><o:p></o:p></p>
</td>
<td
style="width:79.35pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="159">
<p class="MsoNormal" style="text-align:center"
align="center">March 10<o:p></o:p></p>
</td>
</tr>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;border-top:none;padding:0in 5.4pt 0in 5.4pt"
valign="top" width="459">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Vote
for approval (7 days)</span><o:p></o:p></p>
</td>
<td
style="width:82.4pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="165">
<p class="MsoNormal" style="text-align:center"
align="center">March 10<o:p></o:p></p>
</td>
<td
style="width:79.35pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="159">
<p class="MsoNormal" style="text-align:center"
align="center">March 17<o:p></o:p></p>
</td>
</tr>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;border-top:none;padding:0in 5.4pt 0in 5.4pt"
valign="top" width="459">
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">If
vote approves ballot: Review Period (Chair to send
Review Notice) (30 days).
</span><o:p></o:p></p>
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">If
Exclusion Notice(s) filed, ballot approval is
rescinded and PAG to be created.</span><o:p></o:p></p>
<p class="line874"
style="margin:0in;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">If
no Exclusion Notices filed, ballot becomes effective
at end of Review Period.</span><o:p></o:p></p>
</td>
<td
style="width:82.4pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="165">
<p class="MsoNormal" style="text-align:center"
align="center">Upon filing of Review Notice by Chair<o:p></o:p></p>
</td>
<td
style="width:79.35pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0in 5.4pt 0in 5.4pt" valign="top"
width="159">
<p class="MsoNormal" style="text-align:center"
align="center">30 days after filing of Review Notice
by Chair<o:p></o:p></p>
</td>
</tr>
</tbody>
</table>
<p class="line874" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span><o:p></o:p></p>
<p class="line874" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif">From
Bylaw 2.3: If the Draft Guideline Ballot is proposing a
Final Maintenance Guideline, such ballot will include a
redline or comparison showing the set of changes from the
Final Guideline section(s) intended to become a Final
Maintenance Guideline, and need not include a copy of the
full set of guidelines. Such redline or comparison shall be
made against the Final Guideline section(s) as they exist at
the time a ballot is proposed, and need not take into
consideration other ballots that may be proposed
subsequently, except as provided in Bylaw Section 2.3(j).</span><o:p></o:p></p>
<p class="line874" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"> </span><o:p></o:p></p>
<p class="line862" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext">Votes
must be cast by posting an on-list reply to this thread on
the Public list. A vote in favor of the motion must
indicate a clear 'yes' in the response. A vote against must
indicate a clear 'no' in the response. A vote to abstain
must indicate a clear 'abstain' in the response. Unclear
responses will not be counted. The latest vote received from
any representative of a voting member before the close of
the voting period will be counted. Voting members are listed
here:
</span><a moz-do-not-send="true"
href="https://cabforum.org/members/"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext">https://cabforum.org/members/</span></a><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext">
</span><o:p></o:p></p>
<p class="line862" style="margin:0in;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext"> </span><o:p></o:p></p>
<p class="MsoNormal">In order for the motion to be adopted, two
thirds or more of the votes cast by members in the CA category
and greater than 50% of the votes cast by members in the
browser category must be in favor.
<span style="background:white">Quorum is shown on CA/Browser
Forum wiki. Under Bylaw 2.2(g), at least the required
quorum number must participate in the ballot for the ballot
to be valid, either by voting in favor, voting against, or
abstaining.</span><o:p></o:p></p>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Public mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Public@cabforum.org">Public@cabforum.org</a>
<a class="moz-txt-link-freetext" href="https://cabforum.org/mailman/listinfo/public">https://cabforum.org/mailman/listinfo/public</a></pre>
</blockquote>
<br>
</body>
</html>