[cabfpub] Ballot - BR Response for non-issued certificates
tim.moses at entrust.com
Fri Jul 20 18:40:35 UTC 2012
Yngve Pettersen made the following motion and Ben Wilson and Carsten Dahlenkamp endorsed it:
... Motion begins....
Effective 1 Feb 2013
... Erratum begins ...
Insert a new section at the end of section 13.2 of the Baseline Requirements with the following heading and text:
"13.2.6 Response for non-issued certificates
If the OCSP responder receives a request for status of a certificate that has not been issued, then the responder MUST NOT respond with a "good" status. The CA SHOULD monitor the responder for such requests as part of its security response procedures."
... Erratum ends ...
The ballot review period comes into effect at 21:00 UTC on 19 July 2012 and will close at 21:00 UTC on 26 July 2012. Unless the motion is withdrawn during the review period, the voting period will start immediately thereafter and will close at 21:00 UTC on 2 August 2012. Votes must be cast by posting an on-list reply to this thread.
... Motions ends ...
A vote in favor of the motion must indicate a clear 'yes' in the response.
A vote against must indicate a clear 'no' in the response. A vote to abstain must indicate a clear 'abstain' in the response. Unclear responses will not be counted. The latest vote received from any representative of a voting member before the close of the voting period will be counted.
Voting members are listed here:
with the addition of TrendMicro<https://www.cabforum.org/wiki/TrendMicro>.
In order for the motion to be adopted, two thirds or more of the votes cast by members in the CA category and one half or more of the votes cast by members in the browser category must be in favour. Also, at least seven members must participate in the ballot, either by voting in favour, voting against or abstaining.
T: +1 613 270 3183
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Public