[cabfpub] Ballot 161 - Notification of incorrect issuance

Ryan Sleevi sleevi at google.com
Thu Feb 4 01:12:49 UTC 2016


On Wed, Feb 3, 2016 at 5:07 PM, Rick Andrews <Rick_Andrews at symantec.com>
wrote:

> In summary, Symantec can’t support this ballot. Symantec instead
> recommends adoption of a new ballot that would require all publicly trusted
> CAs to log all their issued certificates in accordance with the Google
> EV/CT Plan. This requirement should provide CAs a reasonable amount of time
> to complete implementation, and to address privacy concerns, Symantec
> further recommends that all certificates be logged in 6962-bis-compliant CT
> log servers.


Given that no 6962-bis-compliant CT log servers exist, and 6962-bis
continues to be worked on as the lessons learned from CT are applied, what
timeframe do you see as reasonable? While it's understandable that Symantec
is expected to comply with this policy in four months, regardless of the
status of 6962-bis, it would be helpful to know what you believe is
reasonable.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20160203/73b69934/attachment-0003.html>


More information about the Public mailing list