[Cscwg-public] DISCUSSION BEGINS: Ballot CSC-18 - Update Revocation Requirements

Martijn Katerbarg martijn.katerbarg at sectigo.com
Thu Apr 27 12:50:25 UTC 2023


Based on the discussion regarding an effective date, I’ve added language to Section 4.9 to cover this. Language is available at https://github.com/cabforum/code-signing/pull/17/commits/6fc0d66557d199387c6299e52309ccdcf5c2c66e

 

Barring any comments on this, I will start a new v2 ballot discussion period over the next few days

 

From: Cscwg-public <cscwg-public-bounces at cabforum.org> On Behalf Of Martijn Katerbarg via Cscwg-public
Sent: Thursday, 20 April 2023 10:09
To: cscwg-public at cabforum.org
Subject: Re: [Cscwg-public] DISCUSSION BEGINS: Ballot CSC-18 - Update Revocation Requirements

 

CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.

 

Ian has requested an addition to the language. This was pushed this morning (https://github.com/cabforum/code-signing/pull/17/commits/0545bb2a92e99e21e90f0a3d774419358c26672c <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fcabforum%2Fcode-signing%2Fpull%2F17%2Fcommits%2F0545bb2a92e99e21e90f0a3d774419358c26672c&data=05%7C01%7Cmartijn.katerbarg%40sectigo.com%7C3a254574401c4f3f838708db417676c7%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638175749280674843%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=NdeaDKigtBQWmFaVuP67fe1RpBzWB9Qh22lUv%2FhdrGk%3D&reserved=0> )

 

Unless I’m mistaken, due to the language addition, this requires a new call for the discussion period as a v2 ballot. I will send this out over the next few days.

 

From: Cscwg-public <cscwg-public-bounces at cabforum.org <mailto:cscwg-public-bounces at cabforum.org> > On Behalf Of Martijn Katerbarg via Cscwg-public
Sent: Wednesday, 12 April 2023 16:01
To: cscwg-public at cabforum.org <mailto:cscwg-public at cabforum.org> 
Subject: [Cscwg-public] DISCUSSION BEGINS: Ballot CSC-18 - Update Revocation Requirements

 

CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.

 

Purpose of this ballot: This ballot updates the “Baseline Requirements for the Issuance and Management of Publicly‐Trusted Code Signing Certificates“ version 3.2, Section 4.9.1 - "Circumstances for revocation" in order to align it with the TLS and S/MIME BRs and set stricter requirements for revocation due to Private Key Compromise and use in Suspect Code.

The following motion has been proposed by Martijn Katerbarg of Sectigo and endorsed by Ian McMillan of Microsoft and Bruce Morton of Entrust.

MOTION BEGINS:

This ballot updates the “Baseline Requirements for the Issuance and Management of Publicly‐Trusted Code Signing Certificates” ("Code Signing Baseline Requirements") based on version 3.2.

MODIFY the Code Signing Baseline Requirements as specified in the following redline: https://github.com/cabforum/code-signing/pull/17/files#diff-904962f0e52198f4a232d6ef6732d57ccb47433d4bba47b3472d681405360e31

MOTION ENDS

The procedure for approval of this ballot is as follows:

Discussion (7 days)

*	Start Time: 2023-04-12 16:00 CEST
*	End Time: Not before 2023-04-19 16:00 CEST

Vote for approval (7 days)

*	Start Time: TBD
*	End Time: TBD

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20230427/5f285db6/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6807 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20230427/5f285db6/attachment-0001.p7s>


More information about the Cscwg-public mailing list