[cabfpub] Ballot 161 - Notification of incorrect issuance

Ben Laurie benl at google.com
Thu Feb 4 12:21:59 UTC 2016


On 4 February 2016 at 01:12, Ryan Sleevi <sleevi at google.com> wrote:

>
>
> On Wed, Feb 3, 2016 at 5:07 PM, Rick Andrews <Rick_Andrews at symantec.com>
> wrote:
>
>> In summary, Symantec can’t support this ballot. Symantec instead
>> recommends adoption of a new ballot that would require all publicly trusted
>> CAs to log all their issued certificates in accordance with the Google
>> EV/CT Plan. This requirement should provide CAs a reasonable amount of time
>> to complete implementation, and to address privacy concerns, Symantec
>> further recommends that all certificates be logged in 6962-bis-compliant CT
>> log servers.
>
>
> Given that no 6962-bis-compliant CT log servers exist, and 6962-bis
> continues to be worked on as the lessons learned from CT are applied, what
> timeframe do you see as reasonable?
>

FYI, we plan to put 6962-bis to last call soon.


> While it's understandable that Symantec is expected to comply with this
> policy in four months, regardless of the status of 6962-bis, it would be
> helpful to know what you believe is reasonable.
>
> _______________________________________________
> Public mailing list
> Public at cabforum.org
> https://cabforum.org/mailman/listinfo/public
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20160204/73beeba7/attachment-0003.html>


More information about the Public mailing list