<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=iso-8859-1"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:"Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Aptos;}
@font-face
{font-family:"\@Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Aptos",sans-serif;
mso-ligatures:standardcontextual;
mso-fareast-language:EN-US;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#467886;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
font-size:11.0pt;
font-family:"Aptos",sans-serif;
mso-ligatures:standardcontextual;
mso-fareast-language:EN-US;}
p.null, li.null, div.null
{mso-style-name:null;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle24
{mso-style-type:personal-reply;
font-family:"Aptos",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:70.85pt 85.05pt 70.85pt 85.05pt;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:23678164;
mso-list-type:hybrid;
mso-list-template-ids:-2118729796 1755249806 201981977 201981979 201981967 201981977 201981979 201981967 201981977 201981979;}
@list l0:level1
{mso-level-text:%1-;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1
{mso-list-id:909075906;
mso-list-type:hybrid;
mso-list-template-ids:-776313196 67698703 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l1:level1
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l1:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l2
{mso-list-id:1823422561;
mso-list-template-ids:885149066;}
@list l2:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3
{mso-list-id:1935478954;
mso-list-template-ids:233211584;}
@list l3:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l3:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link="#467886" vlink="#96607D" style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal><span style='mso-fareast-language:JA'>Hi Inigo,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>It appears the hyperlink I provided doesn’t immediately highlight the line (you have to go digging for it). Perhaps explaining it would be easier:<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>EVG version 1.8.0, section 9.8.2 says:<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>“where the subfields have the same values, meanings, and restrictions described in Section 9.2.8.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>The CA SHALL validate the contents using the requirements in Section 9.2.8.”<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Section 9.2.8 is “Subject Organization Identifier Field”.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>This draft has in section 7.1.2.2:<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>“where the subfields have the same values, meanings, and restrictions described in [Section 7.1.4.2.1](#71428-subject-organization-identifier-field). The CA SHALL validate the contents using the requirements in [Section 7.1.4.2.1](#71428-subject-organization-identifier-field).”<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Section 7.1.4.2.1 is “Subject Organization Name Field”. This is not correct, as it needs to be a reference to section 7.1.4.2.8. It looks like the link (which is informative) was updated to correctly point to 7.1.4.2.8, but the actual text of the document (which is normative) specifies the incorrect section number.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Thanks,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Corey<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'>From:</span></b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'> Inigo Barreira <Inigo.Barreira@sectigo.com> <br><b>Sent:</b> Friday, February 16, 2024 12:40 PM<br><b>To:</b> Corey Bonnell <Corey.Bonnell@digicert.com>; CA/B Forum Server Certificate WG Public Discussion List <servercert-wg@cabforum.org><br><b>Subject:</b> RE: [Servercert-wg] [Discussion Period Begins]: SC65: Convert EVGs into RFC 3647 format<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Hi Corey,<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>No worries for this late feedback. Iīll try to address it anyway<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><ol style='margin-top:0in' start=1 type=1><li class=MsoListParagraph style='margin-left:0in;mso-list:l0 level1 lfo1'>Sorry but I donīt see that under line 1303 (I see CRL frequency) but in any case, as said I havenīt changed anything, so if itīs something that needs to be addressed because itīs misleading, we could do it in another ballot. If the issue is that I changed something inadvertently, please let me know where it is exactly because I canīt find it. I assume, in any case, that are you referring to “current” section 9.2.8?<o:p></o:p></li><li class=MsoListParagraph style='margin-left:0in;mso-list:l0 level1 lfo1'>Yes, this ballot will be updated with the latest version derived from SC68, so will include that change. Currently is under review period and finishes in 2 weeks. If this SC65 is approved, it will be updated based on that new version. The issue is that at the time of sending, you can only work with the current version.<o:p></o:p></li><li class=MsoListParagraph style='margin-left:0in;mso-list:l0 level1 lfo1'>Well, I think I indicated somehow by saying “…without changing any content, just moving current sections…” but itīs not as formal as your suggestion. But in any case, thereīs no normative requirement changes. No new text has been added not any other update of the current text.<o:p></o:p></li></ol><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Regards<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span lang=ES style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:ES'>De:</span></b><span lang=ES style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:ES'> Corey Bonnell <<a href="mailto:Corey.Bonnell@digicert.com">Corey.Bonnell@digicert.com</a>> <br><b>Enviado el:</b> viernes, 16 de febrero de 2024 15:46<br><b>Para:</b> Inigo Barreira <<a href="mailto:Inigo.Barreira@sectigo.com">Inigo.Barreira@sectigo.com</a>>; CA/B Forum Server Certificate WG Public Discussion List <<a href="mailto:servercert-wg@cabforum.org">servercert-wg@cabforum.org</a>><br><b>Asunto:</b> RE: [Servercert-wg] [Discussion Period Begins]: SC65: Convert EVGs into RFC 3647 format<o:p></o:p></span></p></div></div><p class=MsoNormal><span lang=ES><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Hi Inigo,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>I did a cursory review of the draft ballot and have a few comments:<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><ol style='margin-top:0in' start=1 type=1><li class=MsoListParagraph style='margin-left:0in;mso-list:l1 level1 lfo2'><span style='mso-fareast-language:JA'>Line 1303 indicates that the values of the CABFOrganizationIdentifier extension MUST be derived from the OrganizationName attribute as opposed to the OrganizationIdentifier attribute: <a href="https://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35..65b69fe0ab5365a002c3d4b668d3f2ab81079411?diff=split&w=#diff-f7368cf58de0586cb0ad80e242205ab3272314af71f4115b99187f49521da529R1303">https://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35..65b69fe0ab5365a002c3d4b668d3f2ab81079411?diff=split&w=#diff-f7368cf58de0586cb0ad80e242205ab3272314af71f4115b99187f49521da529R1303</a><o:p></o:p></span></li><li class=MsoListParagraph style='margin-left:0in;mso-list:l1 level1 lfo2'><span style='mso-fareast-language:JA'>The changes in Appendix H introduced by SC-68 (to allow EL and XI in the VAT Registration Scheme) need to be contemplated in accordance with Bylaws 2.4 (10). Depending on the urgency of this ballot, it might be easier to wait until SC-68 (presumably) clears IPR and is published before initiating voting. <o:p></o:p></span></li><li class=MsoListParagraph style='margin-left:0in;mso-list:l1 level1 lfo2'><span style='mso-fareast-language:JA'>Are there any normative requirements changes introduced in this ballot? If there are none, it would be useful to indicate that there are no normative requirements changes in the ballot preamble so that the intent of the language changes is clear.<o:p></o:p></span></li></ol><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Thanks,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Corey<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'>From:</span></b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'> Servercert-wg <<a href="mailto:servercert-wg-bounces@cabforum.org">servercert-wg-bounces@cabforum.org</a>> <b>On Behalf Of </b>Inigo Barreira via Servercert-wg<br><b>Sent:</b> Friday, February 9, 2024 8:30 AM<br><b>To:</b> CA/B Forum Server Certificate WG Public Discussion List <<a href="mailto:servercert-wg@cabforum.org">servercert-wg@cabforum.org</a>><br><b>Subject:</b> [Servercert-wg] [Discussion Period Begins]: SC65: Convert EVGs into RFC 3647 format<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><p><strong><span lang=ES style='font-family:"Calibri",sans-serif'>Summary: </span></strong><span lang=ES><o:p></o:p></span></p><p id=bkmrk-this-ballot-aims-to->The Extended Validation Certificates guidelines (EVGs) were developed and written in a specific format. Since then, the RFC 3647 has been the basis (and the de-facto standard) for the CA/Browser Forum to develop other documents.<o:p></o:p></p><p><span lang=ES>This ballot aims to </span>update the EVGs to follow the RFC 3647 format without changing any content, just moving current sections to those defined in the RFC 3647. This change also affects t<span lang=ES>he Baseline Requirements </span>for TSL certificates (BRs) which needs to point to the new sections of the EVGs.<span lang=ES><o:p></o:p></span></p><p id=bkmrk-this-pull-request-pr><span lang=ES>This ballot is proposed by </span>Iņigo Barreira<span lang=ES> (Sectigo) and endorsed by </span>Pedro Fuentes<span lang=ES> (</span>OISTE<span lang=ES>) and Ben Wilson (Mozilla).<o:p></o:p></span></p><p id="bkmrk-%E2%80%94-motion-begins-%E2%80%94"><span lang=ES>--- Motion Begins ---<o:p></o:p></span></p><p id=bkmrk-this-ballot-modifies><span lang=ES>This ballot modifies the “Baseline Requirements for the Issuance and Management of Publicly-Trusted </span>TLS<span lang=ES> Certificates" ("</span>TLS <span lang=ES>Baseline Re</span>qu<span lang=ES>irements"), based on Version 2.0.2 </span>and the “Guidelines for the Issuance and Management of Extended Validation Certificates” (EVGs) based on Version 1.8.0. <o:p></o:p></p><p id=bkmrk-modify-the-baseline-><span lang=ES>MODIFY the </span>TLS EVGs and<span lang=ES> B</span>R<span lang=ES>s as specified in the following Redline:<o:p></o:p></span></p><p><span lang=ES><a href="https://url.avanan.click/v2/___https:/github.com/cabforum/servercert/compare/90a98dc7c1131eaab01af411968aa7330d315b9b...65b69fe0ab5365a002c3d4b668d3f2ab81079411___.YXAzOmRpZ2ljZXJ0OmE6bzoyZmIwNGQzNmUyMGY4MzM5OTU3NWYwNDM0NzI3ZDMwYzo2OmYxNTI6MTY2NDE3Njk1NjhmMDhkNjFiOGZmZDk3OWNiNWQwOTkwZmUwMTk3MjFjYTA3ODAxMDAyNTExYjI0MTM2OTdiMDpoOkY" title="Protected by Avanan: https://github.com/cabforum/servercert/compare/90a98dc7c1131eaab01af411968aa7330d315b9b...65b69fe0ab5365a002c3d4b668d3f2ab81079411"><span lang=EN-US>Comparing 90a98dc7c1131eaab01af411968aa7330d315b9b...65b69fe0ab5365a002c3d4b668d3f2ab81079411 · cabforum/servercert (github.com)</span></a><o:p></o:p></span></p><p id=bkmrk-----motion-ends----><span lang=ES>--- Motion Ends ---<o:p></o:p></span></p><p id=bkmrk-this-ballot-proposes><span lang=ES>This ballot proposes a Final Maintenance Guideline </span>for the BRs and EVGs<span lang=ES>. The procedure for approval of this ballot is as follows:<o:p></o:p></span></p><p id="bkmrk-discussion-%2811%2B-days"><span lang=ES>Discussion (at least 7 days)<o:p></o:p></span></p><ol start=1 type=1><li class=null style='mso-list:l2 level1 lfo3'><span lang=ES>Start time: 2024-02-09 1</span><span lang=SV>4</span><span lang=ES>:</span><span lang=SV>3</span><span lang=ES>0:00 UTC<o:p></o:p></span></li><li class=null style='mso-list:l2 level1 lfo3'><span lang=ES>End time: not before 2024-02-</span>16<span lang=ES> 1</span>4<span lang=ES>:</span>3<span lang=ES>0:00 UTC<o:p></o:p></span></li></ol><p id="bkmrk-vote-for-approval-%287"><span lang=ES>Vote for approval (7 days)<o:p></o:p></span></p><ol start=1 type=1><li class=null style='mso-list:l3 level1 lfo4'><span lang=ES>Start time: TBD<o:p></o:p></span></li><li class=null style='mso-list:l3 level1 lfo4'><span lang=ES>End time: TBD<o:p></o:p></span></li></ol><p class=MsoNormal><span lang=ES><o:p> </o:p></span></p></div></body></html>