<div dir="ltr"><div>Ryan,</div><div><br></div><div>Thanks for opening another discussion period! I think I am in favor of all of the language in this ballot. As is my wont, I've left another bevvy of comments <a href="https://github.com/cabforum/servercert/pull/414#pullrequestreview-1431753474">directly on the PR</a>, but they're basically all about organization, not about content.</div><div dir="ltr"><br></div><div dir="ltr">On Wed, May 17, 2023 at 11:32 AM Bruce Morton via Servercert-wg <<a href="mailto:servercert-wg@cabforum.org">servercert-wg@cabforum.org</a>> wrote:<br></div><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div class="msg6558530068514325693">
<div lang="EN-US" style="overflow-wrap: break-word;">
<div class="m_6558530068514325693WordSection1">
<p class="MsoNormal">Hi Ryan,<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">Per the Short-lived Subscriber Certificate definition, many CAs may already issue certificates with a short validity period. I also think the definition is missing the intended use which is a certificate with no certificate status. How
about this definition?<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">**Short-lived Subscriber Certificate**: Certificate issued with a short Validity Period, where the CA MAY NOT provide Subscriber Certificate status.<u></u><u></u></p>
<p class="MsoNormal"><u></u> <u></u></p>
<p class="MsoNormal">The validity period does not need to go in the definition as it is addressed in section 6.3.2.<u></u><u></u></p>
<p class="MsoNormal"><u></u></p></div></div></div></blockquote><div><br></div><div>In the current version of this ballot, the validity period cutoffs for Short-Lived Subscriber Certificates are not actually contained in Section 6.3.2 anymore. In the previous version, they were defined in two places; I suggested consolidating that definition to just Section 1.6.1 Definitions.</div><div><br></div><div>I personally like using the definitions section to define what a Short-Lived Subscriber Certificate <i>is</i>, and then having the document elsewhere describe what costs and benefits such a certificate has. This matches, for example, the way that the Definitions section simply defines "P-Label" and "Non-Reserved LDH Label", but then leaves it up to Section 7.1.2.7.12 to describe why those definitions are important.</div><div><br></div><div>Aaron</div></div></div>