<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=iso-8859-1"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:"Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Aptos;}
@font-face
{font-family:"\@Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Aptos",sans-serif;
mso-ligatures:standardcontextual;
mso-fareast-language:EN-US;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#467886;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
font-size:11.0pt;
font-family:"Aptos",sans-serif;
mso-ligatures:standardcontextual;
mso-fareast-language:EN-US;}
p.null, li.null, div.null
{mso-style-name:null;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle24
{mso-style-type:personal-reply;
font-family:"Aptos",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:70.85pt 85.05pt 70.85pt 85.05pt;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:161356628;
mso-list-template-ids:1497298380;}
@list l1
{mso-list-id:701058589;
mso-list-template-ids:85356776;}
@list l2
{mso-list-id:909075906;
mso-list-type:hybrid;
mso-list-template-ids:-776313196 67698703 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l2:level1
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l2:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l2:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l3
{mso-list-id:1618295646;
mso-list-template-ids:1723484278;}
@list l4
{mso-list-id:1823422561;
mso-list-template-ids:885149066;}
@list l4:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l4:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5
{mso-list-id:1935478954;
mso-list-template-ids:233211584;}
@list l5:level1
{mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level2
{mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level3
{mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level4
{mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level5
{mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level6
{mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level7
{mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level8
{mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l5:level9
{mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link="#467886" vlink="#96607D" style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal><span style='mso-fareast-language:JA'>Also, apologies for sending this feedback late. I had intended to review and send earlier this week, but I got bogged down with a few other urgent matters and didn’t have a chance to review until this AM.<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'>From:</span></b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'> Servercert-wg <servercert-wg-bounces@cabforum.org> <b>On Behalf Of </b>Corey Bonnell via Servercert-wg<br><b>Sent:</b> Friday, February 16, 2024 9:46 AM<br><b>To:</b> Inigo Barreira <Inigo.Barreira@sectigo.com>; CA/B Forum Server Certificate WG Public Discussion List <servercert-wg@cabforum.org><br><b>Subject:</b> Re: [Servercert-wg] [Discussion Period Begins]: SC65: Convert EVGs into RFC 3647 format<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Hi Inigo,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>I did a cursory review of the draft ballot and have a few comments:<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><ol style='margin-top:0in' start=1 type=1><li class=MsoListParagraph style='margin-left:0in;mso-list:l2 level1 lfo3'><span style='mso-fareast-language:JA'>Line 1303 indicates that the values of the CABFOrganizationIdentifier extension MUST be derived from the OrganizationName attribute as opposed to the OrganizationIdentifier attribute: <a href="https://url.avanan.click/v2/___https:/github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35..65b69fe0ab5365a002c3d4b668d3f2ab81079411?diff=split&w=%23diff-f7368cf58de0586cb0ad80e242205ab3272314af71f4115b99187f49521da529R1303___.YXAzOmRpZ2ljZXJ0OmE6bzo0YWZhNzQyMWRjOTYwYzY4NjVkNTA3Zjg3ZTBkMjI2NTo2OjA2NmQ6MjUxMzgzNTM4YzY4NmRhNzQwZWM0NjU2NDllMWRlMTBiYmJhN2VlMzI1YTVkZjcyYjQ5MjZiODU5N2M1NDE3MTpoOkY" title="Protected by Avanan: https://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35..65b69fe0ab5365a002c3d4b668d3f2ab81079411?diff=split&w=#diff-f7368cf58de0586cb0ad80e242205ab3272314af71f4115b99187f49521da529R1303">https://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35..65b69fe0ab5365a002c3d4b668d3f2ab81079411?diff=split&w=#diff-f7368cf58de0586cb0ad80e242205ab3272314af71f4115b99187f49521da529R1303</a><o:p></o:p></span></li><li class=MsoListParagraph style='margin-left:0in;mso-list:l2 level1 lfo3'><span style='mso-fareast-language:JA'>The changes in Appendix H introduced by SC-68 (to allow EL and XI in the VAT Registration Scheme) need to be contemplated in accordance with Bylaws 2.4 (10). Depending on the urgency of this ballot, it might be easier to wait until SC-68 (presumably) clears IPR and is published before initiating voting. <o:p></o:p></span></li><li class=MsoListParagraph style='margin-left:0in;mso-list:l2 level1 lfo3'><span style='mso-fareast-language:JA'>Are there any normative requirements changes introduced in this ballot? If there are none, it would be useful to indicate that there are no normative requirements changes in the ballot preamble so that the intent of the language changes is clear.<o:p></o:p></span></li></ol><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Thanks,<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'>Corey<o:p></o:p></span></p><p class=MsoNormal><span style='mso-fareast-language:JA'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'>From:</span></b><span style='font-family:"Calibri",sans-serif;mso-ligatures:none;mso-fareast-language:JA'> Servercert-wg <<a href="mailto:servercert-wg-bounces@cabforum.org">servercert-wg-bounces@cabforum.org</a>> <b>On Behalf Of </b>Inigo Barreira via Servercert-wg<br><b>Sent:</b> Friday, February 9, 2024 8:30 AM<br><b>To:</b> CA/B Forum Server Certificate WG Public Discussion List <<a href="mailto:servercert-wg@cabforum.org">servercert-wg@cabforum.org</a>><br><b>Subject:</b> [Servercert-wg] [Discussion Period Begins]: SC65: Convert EVGs into RFC 3647 format<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><p><strong><span lang=ES style='font-family:"Calibri",sans-serif'>Summary: </span></strong><span lang=ES><o:p></o:p></span></p><p id=bkmrk-this-ballot-aims-to->The Extended Validation Certificates guidelines (EVGs) were developed and written in a specific format. Since then, the RFC 3647 has been the basis (and the de-facto standard) for the CA/Browser Forum to develop other documents.<o:p></o:p></p><p><span lang=ES>This ballot aims to </span>update the EVGs to follow the RFC 3647 format without changing any content, just moving current sections to those defined in the RFC 3647. This change also affects t<span lang=ES>he Baseline Requirements </span>for TSL certificates (BRs) which needs to point to the new sections of the EVGs.<span lang=ES><o:p></o:p></span></p><p id=bkmrk-this-pull-request-pr><span lang=ES>This ballot is proposed by </span>Iņigo Barreira<span lang=ES> (Sectigo) and endorsed by </span>Pedro Fuentes<span lang=ES> (</span>OISTE<span lang=ES>) and Ben Wilson (Mozilla).<o:p></o:p></span></p><p id="bkmrk-%E2%80%94-motion-begins-%E2%80%94"><span lang=ES>--- Motion Begins ---<o:p></o:p></span></p><p id=bkmrk-this-ballot-modifies><span lang=ES>This ballot modifies the “Baseline Requirements for the Issuance and Management of Publicly-Trusted </span>TLS<span lang=ES> Certificates" ("</span>TLS <span lang=ES>Baseline Re</span>qu<span lang=ES>irements"), based on Version 2.0.2 </span>and the “Guidelines for the Issuance and Management of Extended Validation Certificates” (EVGs) based on Version 1.8.0. <o:p></o:p></p><p id=bkmrk-modify-the-baseline-><span lang=ES>MODIFY the </span>TLS EVGs and<span lang=ES> B</span>R<span lang=ES>s as specified in the following Redline:<o:p></o:p></span></p><p><span lang=ES><a href="https://url.avanan.click/v2/___https:/github.com/cabforum/servercert/compare/90a98dc7c1131eaab01af411968aa7330d315b9b...65b69fe0ab5365a002c3d4b668d3f2ab81079411___.YXAzOmRpZ2ljZXJ0OmE6bzoyZmIwNGQzNmUyMGY4MzM5OTU3NWYwNDM0NzI3ZDMwYzo2OmYxNTI6MTY2NDE3Njk1NjhmMDhkNjFiOGZmZDk3OWNiNWQwOTkwZmUwMTk3MjFjYTA3ODAxMDAyNTExYjI0MTM2OTdiMDpoOkY" title="Protected by Avanan: https://github.com/cabforum/servercert/compare/90a98dc7c1131eaab01af411968aa7330d315b9b...65b69fe0ab5365a002c3d4b668d3f2ab81079411"><span lang=EN-US>Comparing 90a98dc7c1131eaab01af411968aa7330d315b9b...65b69fe0ab5365a002c3d4b668d3f2ab81079411 · cabforum/servercert (github.com)</span></a><o:p></o:p></span></p><p id=bkmrk-----motion-ends----><span lang=ES>--- Motion Ends ---<o:p></o:p></span></p><p id=bkmrk-this-ballot-proposes><span lang=ES>This ballot proposes a Final Maintenance Guideline </span>for the BRs and EVGs<span lang=ES>. The procedure for approval of this ballot is as follows:<o:p></o:p></span></p><p id="bkmrk-discussion-%2811%2B-days"><span lang=ES>Discussion (at least 7 days)<o:p></o:p></span></p><ol start=1 type=1><li class=null style='mso-list:l4 level1 lfo6'><span lang=ES>Start time: 2024-02-09 1</span><span lang=SV>4</span><span lang=ES>:</span><span lang=SV>3</span><span lang=ES>0:00 UTC<o:p></o:p></span></li><li class=null style='mso-list:l4 level1 lfo6'><span lang=ES>End time: not before 2024-02-</span>16<span lang=ES> 1</span>4<span lang=ES>:</span>3<span lang=ES>0:00 UTC<o:p></o:p></span></li></ol><p id="bkmrk-vote-for-approval-%287"><span lang=ES>Vote for approval (7 days)<o:p></o:p></span></p><ol start=1 type=1><li class=null style='mso-list:l5 level1 lfo9'><span lang=ES>Start time: TBD<o:p></o:p></span></li><li class=null style='mso-list:l5 level1 lfo9'><span lang=ES>End time: TBD<o:p></o:p></span></li></ol><p class=MsoNormal><span lang=ES><o:p> </o:p></span></p></div></body></html>