<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:新細明體;
panose-1:2 2 5 0 0 0 0 0 0 0;}
@font-face
{font-family:細明體;
panose-1:2 2 5 9 0 0 0 0 0 0;}
@font-face
{font-family:細明體;
panose-1:2 2 5 9 0 0 0 0 0 0;}
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"\@新細明體";
panose-1:2 2 5 0 0 0 0 0 0 0;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:Cambria-Bold;
panose-1:0 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"\@細明體";
panose-1:2 2 5 9 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.MsoPlainText, li.MsoPlainText, div.MsoPlainText
{mso-style-priority:99;
mso-style-link:"純文字 字元";
margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"註解方塊文字 字元";
margin:0cm;
margin-bottom:.0001pt;
font-size:9.0pt;
font-family:"Cambria","serif";}
span.a
{mso-style-name:"純文字 字元";
mso-style-priority:99;
mso-style-link:純文字;
font-family:細明體;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
p.PlainText, li.PlainText, div.PlainText
{mso-style-name:"Plain Text";
mso-style-link:"Plain Text Char";
margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
span.PlainTextChar
{mso-style-name:"Plain Text Char";
mso-style-priority:99;
mso-style-link:"Plain Text";
font-family:"Calibri","sans-serif";}
span.EmailStyle22
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.EmailStyle23
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle24
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.EmailStyle25
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.EmailStyle26
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.a0
{mso-style-name:"註解方塊文字 字元";
mso-style-priority:99;
mso-style-link:註解方塊文字;
font-family:"Cambria","serif";}
span.EmailStyle29
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body bgcolor=white lang=ZH-TW link="#0563C1" vlink="#954F72"><div class=WordSection1><p class=MsoNormal style='text-autospace:none'><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'><o:p> </o:p></span></p><p class=MsoNormal style='text-autospace:none'><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>I found in In <a href="https://cabforum.org/baseline-requirements-documents/"><span style='font-size:11.0pt;color:windowtext;text-decoration:none'>https://cabforum.org/baseline-requirements-documents/</span></a>, the current version of BR V1.5</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>.</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>4 (or as attached file) section 3.2.4.7 is read as <o:p></o:p></span></p><p class=MsoNormal style='text-autospace:none'><b><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria-Bold","serif"'><o:p> </o:p></span></b></p><p class=MsoNormal style='text-autospace:none'><b><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria-Bold","serif"'>3.2.2.4.7 DNS Change<o:p></o:p></span></b></p><p class=MsoNormal style='text-autospace:none'><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>Confirming the Applicant's control over the FQDN by confirming the presence of a Random Value or Request</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>Token for either in a DNS CNAME, TXT or CAA record for either 1) an Authorization Domain Name; or 2) an</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>Authorization Domain Name that is prefixed with a label that begins with an underscore character.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:12.0pt;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> One goal of Ballot 190 (Ballot 190 v8) is to delete "for either" appears twice in above sentence.</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> (Please see below </span><span lang=EN-US>minor amendments to Ballot 190 discussion.)</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'><o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>By</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> current BR V1.5.4 in CABF official website</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> is still reserved two </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> "for either"</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> I don’t’ know do we need an extra ballot to delete a "for either" again or just publish a correction BR V1.5.4 </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>in CABF website </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>to fix it?</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> (I saw the same error is appeared in Version 1.5.6 in <a href="https://cabforum.org/pipermail/public/2018-February/012976.html">https://cabforum.org/pipermail/public/2018-February/012976.html</a> )<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'><o:p> </o:p></span></p><p class=MsoNormal style='text-indent:15.0pt'><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>I am </span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'>deeply grateful to volunteer work</span><span lang=EN-US style='font-size:10.0pt;font-family:"Cambria","serif"'> by Ben and Kirk. </span><span lang=EN-US style='font-size:12.0pt;color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:12.0pt;color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:12.0pt;color:#1F497D'> </span><span lang=EN-US style='font-family:"Cambria","serif"'>Li-Chun Chen<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-family:"Cambria","serif"'> Chunghwa Telecom <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:12.0pt;color:#1F497D'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal><b><span lang=EN-US style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span lang=EN-US style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> Public [mailto:public-bounces@cabforum.org] <b>On Behalf Of </b>Ben Wilson via Public<br><b>Sent:</b> Wednesday, September 20, 2017 1:40 AM<br><b>To:</b> CA/Browser Forum Public Discussion List<br><b>Subject:</b> [</span><span style='font-size:10.0pt;font-family:"新細明體","serif"'>外部郵件</span><span lang=EN-US style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>] Re: [cabfpub] Voting has started on Ballot 190<o:p></o:p></span></p></div></div><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><a name="_MailEndCompose"><span lang=EN-US>DigiCert votes “yes”<o:p></o:p></span></a></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal><b><span lang=EN-US style='font-size:12.0pt;color:black'>From: </span></b><span lang=EN-US style='font-size:12.0pt;color:black'>Public <<a href="mailto:public-bounces@cabforum.org">public-bounces@cabforum.org</a>> on behalf of Kirk Hall via Public <<a href="mailto:public@cabforum.org">public@cabforum.org</a>><br><b>Reply-To: </b>Kirk Hall <<a href="mailto:Kirk.Hall@entrustdatacard.com">Kirk.Hall@entrustdatacard.com</a>>, CA/Browser Forum Public Discussion List <<a href="mailto:public@cabforum.org">public@cabforum.org</a>><br><b>Date: </b>Tuesday, September 12, 2017 at 3:23 PM<br><b>To: </b>CA/Browser Forum Public Discussion List <<a href="mailto:public@cabforum.org">public@cabforum.org</a>><br><b>Subject: </b>[cabfpub] Voting has started on Ballot 190<o:p></o:p></span></p></div><div><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p></div><p class=MsoNormal><span lang=EN-US style='color:#1F497D'>Voting has started on Ballot 190 as proposed on Sept 5 (see bottom of this message, and attachments), as amended by my email from Sept. 11 (see immediately below). Voting runs through Sept. 19 at 18:00 UTC.</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='color:#1F497D'> </span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='color:#1F497D'>Entrust votes yes.</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='color:#1F497D'> </span><span lang=EN-US><o:p></o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal><b><span lang=EN-US>From:</span></b><span lang=EN-US> Public [<a href="mailto:public-bounces@cabforum.org">mailto:public-bounces@cabforum.org</a>] <b>On Behalf Of </b>Kirk Hall via Public<br><b>Sent:</b> Monday, September 11, 2017 6:01 AM<br><b>To:</b> CA/Browser Forum Public Discussion List <<a href="mailto:public@cabforum.org">public@cabforum.org</a>><br><b>Subject:</b> [EXTERNAL][cabfpub] Two amendments to Ballot 190<o:p></o:p></span></p></div></div><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>The proposer and endorsers are making two minor amendments to Ballot 190 as follows.<o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US> <o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US>1) In BR 3.2.2.4.6 "Agreed-Upon Change to Website", the current draft Version 8 still has the typo "Request Value" that crept in sometime around BR 1.4. It should be "Random Value". <b><u>Accordingly, BR 3.2.2.4.6 in Ballot 190 is changed to read as follows:</u></b><o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal style='margin-left:36.0pt;background:white'><b><span lang=EN-US style='color:black'>3.2.2.4.6 Agreed-Upon Change to Website</span></b><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='margin-left:36.0pt;background:white'><span lang=EN-US style='color:black'> </span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='margin-left:36.0pt;background:white'><span lang=EN-US style='color:black'>Confirming the Applicant's control over the FQDN by confirming one of the following under the "/.well-known/pki-validation" directory, or another path registered with IANA for the purpose of Domain Validation, on the Authorization Domain Name that is accessible by the CA via HTTP/HTTPS over an Authorized Port:</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='margin-left:36.0pt;background:white'><span lang=EN-US style='color:black'> </span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='margin-left:72.0pt;text-indent:-18.0pt;background:white'><span lang=EN-US>1.</span><span lang=EN-US style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span><span lang=EN-US style='color:black'>The presence of Required Website Content contained in the content of a file. The entire Required Website Content MUST NOT appear in the request used to retrieve the file or web page, or</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='margin-left:72.0pt;background:white'><span lang=EN-US style='color:black'> </span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='margin-left:72.0pt;text-indent:-18.0pt;background:white'><span lang=EN-US>2.</span><span lang=EN-US style='font-size:7.0pt;font-family:"Times New Roman","serif"'> </span><span lang=EN-US style='color:black'>The presence of the Request Token or <i><s>Request</s></i> <b><u>Random</u></b> Value contained in the content of a file where the Request Token or Random Value MUST NOT appear in the request. ***</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US> <o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US>2) In Version 8 of BR 3.2.2.4.7, "DNS Change", the current language says:<o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US> <o:p></o:p></span></p><p class=MsoPlainText style='margin-left:36.0pt'><span lang=EN-US>"Confirming the Applicant's control over the FQDN by confirming the presence of a Random Value or Request Token <u>for either</u> in a DNS CNAME, TXT or CAA record <u>for either</u> 1) an Authorization Domain Name; or 2) an Authorization Domain Name that is prefixed with a label that begins with an underscore character." <o:p></o:p></span></p><p class=MsoPlainText style='margin-left:36.0pt'><span lang=EN-US> <o:p></o:p></span></p><p class=MsoPlainText><span lang=EN-US>Note that "for either" appears twice in the sentence, and we think the first occurrence should be deleted. <b><u>Accordingly, BR 3.2.2.4.7 in Ballot 190 is changed to read as follows:</u></b><o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal style='mso-margin-top-alt:6.0pt;margin-right:0cm;margin-bottom:6.0pt;margin-left:36.0pt;background:white'><a name="OLE_LINK2"><b><span lang=EN-US style='color:black'>3.2.2.4.7 DNS Change</span></b></a><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='mso-margin-top-alt:6.0pt;margin-right:0cm;margin-bottom:6.0pt;margin-left:36.0pt;background:white'><span lang=EN-US style='color:black'>Confirming the Applicant's control over the FQDN by confirming the presence of a Random Value or Request Token <i><s>for either</s></i> in a DNS CNAME, TXT or CAA record for either 1) an Authorization Domain Name; or 2) an Authorization Domain Name that is prefixed with a label that begins with an underscore character.</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal style='mso-margin-top-alt:6.0pt;margin-right:0cm;margin-bottom:6.0pt;margin-left:0cm;background:white'><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal style='mso-margin-top-alt:6.0pt;margin-right:0cm;margin-bottom:6.0pt;margin-left:0cm;background:white'><span lang=EN-US>Voting on Ballot 190 will begin tomorrow, and the text has been changed as shown above.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='color:#1F497D'>***</span><span lang=EN-US><o:p></o:p></span></p><p class=MsoNormal><b><span lang=EN-US>From:</span></b><span lang=EN-US> Public [<a href="mailto:public-bounces@cabforum.org">mailto:public-bounces@cabforum.org</a>] <b>On Behalf Of </b>Kirk Hall via Public<br><b>Sent:</b> Tuesday, September 5, 2017 10:52 AM<br><b>To:</b> CA/Browser Forum Public Discussion List <<a href="mailto:public@cabforum.org">public@cabforum.org</a>><br><b>Subject:</b> [EXTERNAL][cabfpub] Ballot 190 - Discussion Period is starting<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>As agreed on our CABF teleconference last week, we are starting the formal discussion period for Ballot 190 (in this case, v8). I have attached the ballot in two formats and in three modes.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>The title of the actual ballot to be voted on uses all capital letters “BALLOT 190 v8 (9-5-2017)”. I also attach a version that includes some explanatory comments, and a “clean” version showing how the BRs will read if Ballot 190 v8 is adopted “Ballot 190 v8 (9-5-2017) (showing BRs if adopted)”.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>The discussion period ends Sept. 12 at 18:00 UTC, and the voting period runs Sept. 12-19.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>This version 8 is based on the prior version 7, but includes a limited number of changes as outlined in emails among me, Ryan, and Doug on Aug. 29-30. <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>We are almost there! Thanks to everyone who has worked on this effort over the past two years. Assuming Ballot 190 passes, the Validation Working Group can then start work on further amendments as outlined in my prior emails.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='color:#1F497D'> </span><span lang=EN-US><o:p></o:p></span></p></div></body></html><br><html><div><div>本信件可能包含中華電信股份有限公司機密資訊,非指定之收件者,請勿蒐集、處理或利用本信件內容,並請銷毀此信件. 如為指定收件者,應確實保護郵件中本公司之營業機密及個人資料,不得任意傳佈或揭露,並應自行確認本郵件之附檔與超連結之安全性,以共同善盡資訊安全與個資保護責任. </div><div>Please be advised that this email message (including any attachments) contains confidential information and may be legally privileged. If you are not the intended recipient, please destroy this message and all attachments from your system and do not further collect, process, or use them. Chunghwa Telecom and all its subsidiaries and associated companies shall not be liable for the improper or incomplete transmission of the information contained in this email nor for any delay in its receipt or damage to your system. If you are the intended recipient, please protect the confidential and/or personal information contained in this email with due care. Any unauthorized use, disclosure or distribution of this message in whole or in part is strictly prohibited. Also, please self-inspect attachments and hyperlinks contained in this email to ensure the information security and to protect personal information.</div></div><div><br></div><div><br></div></html>