<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:"Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
@font-face
{font-family:Aptos;}
@font-face
{font-family:"\@Yu Gothic";
panose-1:2 11 4 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:12.0pt;
font-family:"Aptos",sans-serif;}
h1
{mso-style-priority:9;
mso-style-link:"Heading 1 Char";
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:24.0pt;
font-family:"Aptos",sans-serif;
font-weight:bold;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.Heading1Char
{mso-style-name:"Heading 1 Char";
mso-style-priority:9;
mso-style-link:"Heading 1";
font-family:"Aptos Display",sans-serif;
color:#0F4761;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Aptos",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:960577753;
mso-list-template-ids:-142570902;}
@list l0:level1
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:"Courier New";
mso-bidi-font-family:"Times New Roman";}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Wingdings;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple style='word-wrap:break-word'><div class=WordSection1><p>These are the Final Minutes of the Teleconference described in the subject of this message, prepared by Dimitris Zacharopoulos (HARICA) and approved on June 27<sup>th</sup>.<o:p></o:p></p><h1>Note-well<o:p></o:p></h1><p class=MsoNormal>Corey read the note-well.<br><br><o:p></o:p></p><h1>Attendees<o:p></o:p></h1><p>Aaron Gable - (Let's Encrypt), Aaron Poulsen - (Amazon), Ben Wilson - (Mozilla), Corey Bonnell - (DigiCert), Corey Rasmussen - (OATI), Dimitris Zacharopoulos - (HARICA), Doug Beattie - (GlobalSign), Enrico Entschew - (D-TRUST), Eva Vansteenberge - (GlobalSign), Gregory Tomko - (GlobalSign), Johnny Reading - (GoDaddy), Joseph Ramm - (OATI), Mahua Chaudhuri - (Microsoft), Martijn Katerbarg - (Sectigo), Michael Slaughter - (Amazon), Michelle Coon - (OATI), Nate Smith - (GoDaddy), Paul van Brouwershaven - (Entrust), Pedro Fuentes - (OISTE Foundation), Rebecca Kelly - (SSL.com), Scott Rea - (eMudhra), Stephen Davidson - (DigiCert), Thomas Zermeno - (SSL.com), Tobias Josefowitz - (Opera Software AS), Wayne Thayer - (Fastly), Wendy Brown - (US Federal PKI Management Authority).<o:p></o:p></p><h1 id=agenda>Agenda<o:p></o:p></h1><p>Pedro proposed to discuss the role of QGIS when used as a validation source.<o:p></o:p></p><p>Enrico proposed to add an agenda topic for a proposal regarding section 7.1.2.7.7.<o:p></o:p></p><h1 id=approval-of-minutes>Approval of minutes<o:p></o:p></h1><ul type=disc><li class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;mso-list:l0 level1 lfo1'>2024-05-16. Minutes were distributed. Members will have time to review and approve at the next meeting.<o:p></o:p></li></ul><h1 id=improving-requirements-for-ev-registration-numbers-this-is-the-topic-we-didnt-get-to-at-the-f2f>1. Improving requirements for EV registration numbers (this is the topic we didn’t get to at the F2F)<o:p></o:p></h1><p>Corey referred to a public incident in Bugzilla that inspired this proposal and went through the summary of the issue. Registration Numbers apply only to Private Organizations and the language in the EV Guidelines needs to be more consistent.<o:p></o:p></p><p>The proposal tries to clarify the expectations for Registration Numbers for Government Entities and other types.<o:p></o:p></p><p>Corey went through the draft language in <a href="https://url.avanan.click/v2/___https:/github.com/CBonnell/servercert/pull/6/files___.YXAzOmRpZ2ljZXJ0OmE6bzphMjkxNGFhMTM5NWViNDkzODQ2ZjUwY2YwNTgwNzE2ZDo2OmY3OGM6OTQ5MmE2NTBmYTRlMDRhMWEwYWNlNGFjYmMyMDk3ZDI2MjBjZjE4ZTBjMTc2ZTg2ZWVlOTMxMmU3YzFhZjAzNjpoOkY" title="Protected by Avanan: https://github.com/CBonnell/servercert/pull/6/files">https://url.avanan.click/v2/___https://github.com/CBonnell/servercert/pull/6/files___.YXAzOmRpZ2ljZXJ0OmE6bzphMjkxNGFhMTM5NWViNDkzODQ2ZjUwY2YwNTgwNzE2ZDo2OjZhZTE6YWYwNWMxNjZhYjFhYTg2NmM3ZmQ2N2QzOTZhOTgyYWFmMmZjYzA1YmQ2ODFmZTMxODBlM2VjZGQ1ZDZkYjM4Yjp0OkY</a> and provided explanations of the changes.<o:p></o:p></p><p>Dimitris noted that the "Date of Formation" language in the Non-Commercial Entity Subjects should also include the previous language regarding the legal act of formation.<o:p></o:p></p><p>Corey agreed and noted that he doesn't intend to start a ballot soon so there will be time for Members to evaluate and propose improvements or raise concerns.<o:p></o:p></p><p>After discussing the concrete language improvements that are not effectively changing any existing requirements, perhaps there is an opportunity to add specific improvements, like mandating a specific date format, "appropriate language to indicate the Subject is a Government/Non-Commercial Entity"?<o:p></o:p></p><h1 id="delegated-third-parties-and-dcv-where-did-this-requirement-come-from-and-how-did-we-get-here-a-discussion-of-the-historical-origins-of-this-requirement-as-it-was-deemed-useful-to-have-on-our-previous-call-on-the-dtp-topic">2. Delegated Third Parties and DCV: where did this requirement come from and how did we get here? (a discussion of the historical origins of this requirement as it was deemed useful to have on our previous call on the DTP topic)<o:p></o:p></h1><p>Decided to spend time at the next meeting.<o:p></o:p></p><h1 id=the-role-of-the-qgis-when-used-as-a-validation-source>3. The role of the QGIS when used as a validation source<o:p></o:p></h1><p>Aggregators or other governmental services and can be used as verification sources.<o:p></o:p></p><p>Registration or Incorporating Agencies do not always provide public access, making it very difficult to use<o:p></o:p></p><p>Pedro shared the proposed language in <a href="https://url.avanan.click/v2/___https:/github.com/cabforum/servercert/pull/510/files___.YXAzOmRpZ2ljZXJ0OmE6bzphMjkxNGFhMTM5NWViNDkzODQ2ZjUwY2YwNTgwNzE2ZDo2OjdmMGM6NTNiN2ZjZGY0NTQxNWRjZWRmNjdjOTk3NTI3MDY2OWIwMzk2Nzg3NmFjNDdiYTMyNzI5NGVmYjU3NjAyNzBkNDpoOkY" title="Protected by Avanan: https://github.com/cabforum/servercert/pull/510/files">https://url.avanan.click/v2/___https://github.com/cabforum/servercert/pull/510/files___.YXAzOmRpZ2ljZXJ0OmE6bzphMjkxNGFhMTM5NWViNDkzODQ2ZjUwY2YwNTgwNzE2ZDo2Ojk0Nzc6N2NlMTc4NDEzYzc2OWM0ZTNhMDAwOTc0ZTczNDEzYmViZDE1MGY3NGZiMTk3MThmOTJhNjBkYTliMmI1ZWE3Nzp0OkY</a> and walked through the changes.<o:p></o:p></p><p>The proposal is to add the QGIS as an appropriate verification source in addition to the Registration/Incorporation Agencies.<o:p></o:p></p><p>Dimitris noted that we must be careful with the aggregators for governmental services and should not consider aggregators in general as QGIS.<o:p></o:p></p><p>Corey recommended starting an email thread to solicit feedback.<o:p></o:p></p><h1 id=proposed-change-to-brs-section-7.1.2.7.7>4. Proposed change to BRs section 7.1.2.7.7<o:p></o:p></h1><p>Enrico described an issue with adding LDAP URLs in the CRLDP, and wants to propose language to adjust the BRs to make this requirement clearer.<o:p></o:p></p><p>He shared a github redline with language taken primarily from the S/MIME BRs. The group agreed that the language in the S/MIME BRs seems clearer and easier to read/implement.<o:p></o:p></p><p>Dimitris noted the use of the term "HTTP scheme" and asked if this is a used term vs a "HTTPS scheme". Corey pointed to <a href="https://url.avanan.click/v2/___https:/datatracker.ietf.org/doc/html/rfc3986%23section-3.1___.YXAzOmRpZ2ljZXJ0OmE6bzphMjkxNGFhMTM5NWViNDkzODQ2ZjUwY2YwNTgwNzE2ZDo2OmM0OTE6NTBlZjFhNzRhODlkYWU0MDYzODRhZjVhNTdiOGRkYjVjMzUyODY3ZDdkOGYxMjJlZTRlM2JiMmEyMmQzODgyNDpoOkY" title="Protected by Avanan: https://datatracker.ietf.org/doc/html/rfc3986#section-3.1">https://url.avanan.click/v2/___https://datatracker.ietf.org/doc/html/rfc3986%23section-3.1___.YXAzOmRpZ2ljZXJ0OmE6bzphMjkxNGFhMTM5NWViNDkzODQ2ZjUwY2YwNTgwNzE2ZDo2OjkyMTQ6ODgzZGM3YWUxYTk1ZjU1MDAzZDcxNWUzYWI4MWY2NjQ3NzAwYTI4NGYxM2E3ZjViNjc3Yjk0NGJkMzE3YWZhZDp0OkY</a> which defines those schemes.<o:p></o:p></p><p>Taking this opportunity for a ballot, the group suggested going through the BRs and EVGs to make sure consistent language is used for HTTP/S "schemes" to avoid any unintended errors. Enrico agreed with the task.<o:p></o:p></p><p>Martijn proposed adding "HTTP scheme" in the definitions section so it can be used throughout the document. Dimitris proposed re-using the terminology of RFC 3986, perhaps combined with a definition in section 1.6.1 which will make it even more clear.<o:p></o:p></p><p>In terms of next steps, Enrico asked for some assistance to draft a ballot and will start from a new branch on GitHub. Many members volunteered to assist so Enrico can reach out to people for assistance with the process and GitHub. The same applies for Pedro.<o:p></o:p></p><h1>Adjourn<o:p></o:p></h1></div></body></html>