<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<span
style="font-size:10.0pt;line-height:105%;mso-fareast-language:EN-US"><o:p></o:p></span>Actalis
"abstains".<br>
<br>
<blockquote
cite="mid:319790e545534ed6951410049b5917d2@DISIGEX.disig.local"
type="cite">
<div class="WordSection1">
<p class="MsoNormal"><span
style="font-size:10.0pt;line-height:105%;mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1
1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<b><span lang="EN-US">From:</span></b><span lang="EN-US">
Public [<a class="moz-txt-link-freetext" href="mailto:public-bounces@cabforum.org">mailto:public-bounces@cabforum.org</a>]
<b>On Behalf Of </b>Kirk Hall via Public<br>
<b>Sent:</b> Saturday, March 11, 2017 6:20 PM<br>
<b>To:</b> CA/Browser Forum Public Discussion List
<a class="moz-txt-link-rfc2396E" href="mailto:public@cabforum.org"><public@cabforum.org></a><br>
<b>Cc:</b> Kirk Hall
<a class="moz-txt-link-rfc2396E" href="mailto:Kirk.Hall@entrustdatacard.com"><Kirk.Hall@entrustdatacard.com></a><br>
<b>Subject:</b> [cabfpub] Voting has started on Ballot
193 - 825-day Certificate Lifetimes<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US">Voting has started on Ballot 193 - 825-day
Certificate Lifetimes (shown below and attached). Voting
will end on Friday, March 17, 2017 at 23:00 UTC.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US">*********<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<b><span lang="EN-US">Ballot 193 - 825-day Certificate
Lifetimes (REVISED v2 – March 2, 2017)</span></b><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<b><span lang="EN-US">Purpose of Ballot:</span></b><span
lang="EN-US"> Recent Ballot 185 demonstrated a consensus
among Forum members to reduce the maximum lifetime for DV
and OV certificates from 39 months to 825 days (roughly 27
months). This ballot reflects that consensus, and also
reduces the maximum period for reuse of vetting data for DV
and OV certificates from 39 months to 27 months.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US">The following motion has been proposed by
Chris Bailey of Entrust Datacard and endorsed by the
following CA/B Forum member representatives (listed in
alphabetical order) Robin Alden of Comodo, Ben Wilson of
DigiCert, and Doug Beattie of GlobalSign to introduce new
Final Maintenance Guidelines for the "Baseline Requirements
Certificate Policy for the Issuance and Management of
Publicly-Trusted Certificates" (Baseline Requirements) and
the "Guidelines for the Issuance and Management of Extended
Validation Certificates" (EV Guidelines).<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US">-- MOTION BEGINS -- <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b><span
lang="EN-US">BR 4.2.1. Performing Identification and
Authentication Functions</span></b><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US">The certificate request MAY include all factual
information about the Applicant to be included in the
Certificate, and such additional information as is necessary
for the CA to obtain from the Applicant in order to comply
with these Requirements and the CA’s Certificate Policy
and/or Certification Practice Statement. In cases where the
certificate request does not contain all the necessary
information about the Applicant, the CA SHALL obtain the
remaining information from the Applicant or, having obtained
it from a reliable, independent, third‐party data source,
confirm it with the Applicant. The CA SHALL establish and
follow a documented procedure for verifying all data
requested for inclusion in the Certificate by the Applicant.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US">Applicant information MUST include, but not be
limited to, at least one Fully‐Qualified Domain Name or IP
address to be included in the Certificate’s SubjectAltName
extension.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US">Section 6.3.2 limits the validity period of
Subscriber Certificates. The CA MAY use the documents and
data provided in Section 3.2 to verify certificate
information, provided that the CA obtained the data or
document from a source specified under Section 3.2 no more
than <b><u>825 days</u> </b><i><s>thirty‐nine (39) months</s></i>
prior to issuing the Certificate.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US">The CA SHALL develop, maintain, and implement
documented procedures that identify and require additional
verification activity for High Risk Certificate Requests
prior to the Certificate’s approval, as reasonably necessary
to ensure that such requests are properly verified under
these Requirements.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US">If a Delegated Third Party fulfills any of
the CA’s obligations under this section, the CA SHALL verify
that the process used by the Delegated Third Party to
identify and further verify High Risk Certificate Requests
provides at least the same level of assurance as the CA’s
own processes.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<span lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b><span
lang="EN-US">BR 6.3.2. Certificate Operational Periods and
Key Pair Usage Periods</span></b><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US">Subscriber Certificates issued after <b><u>March
1, 2018 </u></b><i><s>the Effective Date</s></i> MUST
have a Validity Period no greater than
<b><u>825 days</u> </b><i><s>60 months</s></i>. <b><u>Subscriber
Certificates issued after 1 July 2016
<i><s>April 2015</s></i> but prior to 1 March 2018 MUST
<i><s>NOT</s></i> have a Validity Period no greater than
thirty-nine (39) months.</u></b><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s><span
lang="EN-US">Except as provided for below, Subscriber
Certificates issued after 1 April 2015 MUST have a
Validity Period no greater than 39 months.</span></s></i><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><span
lang="EN-US"> </span></i><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s><span
lang="EN-US">Until 30 June 2016, CAs MAY continue to
issue Subscriber Certificates with a Validity Period
greater than 39 months but not greater than 60 months
provided that the CA documents that the Certificate is
for a system or software that:</span></s></i><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><span
lang="EN-US"> </span></i><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s><span
lang="EN-US">(a) was in use prior to the Effective Date;</span></s></i><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s><span
lang="EN-US">(b) is currently in use by either the
Applicant or a substantial number of Relying Parties;</span></s></i><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s><span
lang="EN-US">(c) fails to operate if the Validity Period
is shorter than 60 months;</span></s></i><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><i><s><span
lang="EN-US">(d) does not contain known security risks
to Relying Parties; and</span></s></i><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal">
<i><s><span lang="EN-US">(e) is difficult to patch or replace
without substantial economic outlay.</span></s></i><span
lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b><span
lang="EN-US"> </span></b><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><b><span
lang="EN-US">EVGL 9.4. Maximum Validity Period For EV
Certificate</span></b><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US">The validity period for an EV Certificate SHALL
NOT exceed <b>
<u>825 days</u></b> <i><s>twenty seven months</s></i>. It
is RECOMMENDED that EV Subscriber Certificates have a
maximum validity period of twelve months.<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">-- MOTION ENDS --<o:p></o:p></span></p>
<p class="MsoNormal"
style="margin-bottom:0cm;margin-bottom:.0001pt;line-height:normal;text-autospace:none"><span
lang="EN-US"> <o:p></o:p></span></p>
<p class="line874" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US">The procedure for approval of this Final
Maintenance Guideline ballot is as follows (exact start and
end times may be adjusted to comply with applicable Bylaws
and IPR Agreement):</span><span lang="EN-US"><o:p></o:p></span></p>
<p class="line874" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US"> </span><span lang="EN-US"><o:p></o:p></span></p>
<table class="MsoNormalTable" style="border-collapse:collapse"
border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="306">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">BALLOT
193</span><o:p></o:p></p>
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Status:
Final Maintenance Guideline</span><o:p></o:p></p>
</td>
<td style="width:82.4pt;border:solid windowtext
1.0pt;border-left:none;padding:0cm 5.4pt 0cm 5.4pt"
valign="top" width="110">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;text-align:center;line-height:105%"
align="center">
<span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Start
time (23:00 UTC)</span><o:p></o:p></p>
</td>
<td style="width:79.35pt;border:solid windowtext
1.0pt;border-left:none;padding:0cm 5.4pt 0cm 5.4pt"
valign="top" width="106">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;text-align:center;line-height:105%"
align="center">
<span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">End
time (23:00 UTC)</span><o:p></o:p></p>
</td>
</tr>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
valign="top" width="306">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Discussion
(7 to 14 days)</span><o:p></o:p></p>
</td>
<td
style="width:82.4pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="110">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;text-align:center;line-height:105%"
align="center">
<span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">March
3</span><o:p></o:p></p>
</td>
<td
style="width:79.35pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="106">
<p class="MsoNormal" style="text-align:center"
align="center">March 10<o:p></o:p></p>
</td>
</tr>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
valign="top" width="306">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">Vote
for approval (7 days)</span><o:p></o:p></p>
</td>
<td
style="width:82.4pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="110">
<p class="MsoNormal" style="text-align:center"
align="center">March 10<o:p></o:p></p>
</td>
<td
style="width:79.35pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="106">
<p class="MsoNormal" style="text-align:center"
align="center">March 17<o:p></o:p></p>
</td>
</tr>
<tr>
<td style="width:229.25pt;border:solid windowtext
1.0pt;border-top:none;padding:0cm 5.4pt 0cm 5.4pt"
valign="top" width="306">
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">If
vote approves ballot: Review Period (Chair to send
Review Notice) (30 days).
</span><o:p></o:p></p>
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">If
Exclusion Notice(s) filed, ballot approval is
rescinded and PAG to be created.</span><o:p></o:p></p>
<p class="line874"
style="margin:0cm;margin-bottom:.0001pt;line-height:105%"><span
style="font-size:11.0pt;line-height:105%;font-family:"Calibri",sans-serif">If
no Exclusion Notices filed, ballot becomes effective
at end of Review Period.</span><o:p></o:p></p>
</td>
<td
style="width:82.4pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="110">
<p class="MsoNormal" style="text-align:center"
align="center">Upon filing of Review Notice by Chair<o:p></o:p></p>
</td>
<td
style="width:79.35pt;border-top:none;border-left:none;border-bottom:solid
windowtext 1.0pt;border-right:solid windowtext
1.0pt;padding:0cm 5.4pt 0cm 5.4pt" valign="top"
width="106">
<p class="MsoNormal" style="text-align:center"
align="center">30 days after filing of Review Notice
by Chair<o:p></o:p></p>
</td>
</tr>
</tbody>
</table>
<p class="line874" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US"> </span><span lang="EN-US"><o:p></o:p></span></p>
<p class="line874" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US">From Bylaw 2.3: If the Draft Guideline Ballot
is proposing a Final Maintenance Guideline, such ballot will
include a redline or comparison showing the set of changes
from the Final Guideline section(s) intended to become a
Final Maintenance Guideline, and need not include a copy of
the full set of guidelines. Such redline or comparison
shall be made against the Final Guideline section(s) as they
exist at the time a ballot is proposed, and need not take
into consideration other ballots that may be proposed
subsequently, except as provided in Bylaw Section 2.3(j).</span><span
lang="EN-US"><o:p></o:p></span></p>
<p class="line874" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif"
lang="EN-US"> </span><span lang="EN-US"><o:p></o:p></span></p>
<p class="line862" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext"
lang="EN-US">Votes must be cast by posting an on-list reply
to this thread on the Public list. A vote in favor of the
motion must indicate a clear 'yes' in the response. A vote
against must indicate a clear 'no' in the response. A vote
to abstain must indicate a clear 'abstain' in the response.
Unclear responses will not be counted. The latest vote
received from any representative of a voting member before
the close of the voting period will be counted. Voting
members are listed here:
</span><span lang="EN-US"><a moz-do-not-send="true"
href="https://cabforum.org/members/"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext">https://cabforum.org/members/</span></a></span><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext"
lang="EN-US">
</span><span lang="EN-US"><o:p></o:p></span></p>
<p class="line862" style="margin:0cm;margin-bottom:.0001pt"><span
style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:windowtext"
lang="EN-US"> </span><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">In order for the motion
to be adopted, two thirds or more of the votes cast by
members in the CA category and greater than 50% of the votes
cast by members in the browser category must be in favor.
<span style="background:white">Quorum is shown on CA/Browser
Forum wiki. Under Bylaw 2.2(g), at least the required
quorum number must participate in the ballot for the
ballot to be valid, either by voting in favor, voting
against, or abstaining.</span><o:p></o:p></span></p>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Public mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Public@cabforum.org">Public@cabforum.org</a>
<a class="moz-txt-link-freetext" href="https://cabforum.org/mailman/listinfo/public">https://cabforum.org/mailman/listinfo/public</a>
</pre>
</blockquote>
<br>
<div class="moz-signature">-- <br>
<p style="font-family: Serif">
Cordiali saluti,<br>
<br>
Adriano Santoni<br>
ACTALIS S.p.A.<br>
(Aruba Group)</p>
</div>
</body>
</html>