[cabfpub] BR Section 16.5 System Security Footnote

Ben Wilson ben.wilson at digicert.com
Thu Mar 19 17:28:11 UTC 2015

In the last iteration of the Ballot 146 draft of the Baseline Requirements I
took out the Network and  Certificate System Security Requirements (NetSec)
because it appeared that a majority of members, at least those who spoke up,
did not want them incorporated by reference under each of the RFC 3647
headings.  Did that mean that they didn't want them referenced as a whole in
the Baseline Requirements?  As I and others have mentioned several times,
Footnote 1 to BR section 16.5 needs to be replaced with an incorporation by
reference of the NetSec.  For those of you unfamiliar with Footnote 1, it
has always been part of the Baseline Requirements.  It states, "[1] The
CA/Browser Forum will enact additional security requirements after the
adoption of v1.0 of the Requirements."  I, and others, have read this to
mean that we intended to incorporate the NetSec by reference into the BRs.
Before I post Ballot 146 (Conversion of BRs to RFC 3647), I propose to
insert, as the first sentence of section 5, the following, "The CA/Browser
Forum's Network and Certificate System Security Requirements are
incorporated by reference as if fully set forth herein."  



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150319/7f545b13/attachment-0002.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4954 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20150319/7f545b13/attachment.p7s>

More information about the Public mailing list