[cabfpub] Ballot 168: Baseline Requirements Corrections (Revised)
wthayer at godaddy.com
Mon May 9 17:55:08 UTC 2016
GoDaddy votes YES.
> -----Original Message-----
> From: public-bounces at cabforum.org [mailto:public-
> bounces at cabforum.org] On Behalf Of Peter Bowen
> Sent: Tuesday, April 26, 2016 9:44 AM
> To: CABFPub <public at cabforum.org>
> Subject: [cabfpub] Ballot 168: Baseline Requirements Corrections (Revised)
> Thank you to HARICA and Comodo for endorsing. With that the review
> period is now open. If anyone has comments or objections, please reply on
> Ballot 168: Baseline Requirements Corrections (Revised)
> The following motion has been proposed by Peter Bowen of Amazon and
> endorsed by Dimitris Zacharopoulos of HARICA and Rich Smith of Comodo:
> A number of small corrections and clarifications to the Baseline Requirements
> have been identified. These are, in general, changes that reflect the existing
> understanding of the Baseline Requirements by the Forum. Due to the
> understanding that these primarily represent existing practice, they are
> combined for efficiency.
> -- MOTION BEGINS --
> Effective the date of passage, the following modifications to the Baseline
> Requirements are adopted:
> In Section 1.6.1:
> * In the definition of "Applicant Representative", replace "and agrees to the
> at the end of the definition;
> * In the definition of "Country", replace "soverign nation" with "Soverign
> In Section 1.6.3:
> * Delete RFC2560;
> * Insert "RFC6960, Request for Comments: 6960, X.509 Internet Public Key
> Infrastructure Online Certificate Status Protocol - OCSP. Santesson, Myers,
> Ankney, Malpani, Galperin, Adams, June 2013.";
> * Delete X.509v3
> * Insert "X.509, Recommendation ITU-T X.509 (10/2012) | ISO/IEC 9594-
> 8:2014 (E), Information technology – Open Systems Interconnection – The
> Directory: Public-key and attribute certificate frameworks."
> Move the content in section 3.3.1 to section 4.2.1 to become the third
> paragraph in 4.2.1 and leave section 3.3.1 blank.
> In section 4.9.9, replace all occurrences of "RFC2560" with "RFC6960".
> In section 5.2.2, insert "CA" immediately before "Private Key".
> In section 6.1.2, append "without authorization by the Subscriber" to the end
> of the first sentence.
> In section 6.1.6, update the last citation to read: "[Source: Sections 18.104.22.168.2
> and 22.214.171.124.3, respectively, of NIST SP 56A: Revision 2]"
> In section 6.2, in the second sentence, insert "CA" immediately before both
> instances of "Private Key".
> In section 6.2.5, append "without authorization by the Subordinate CA" to
> the end of the sentence.
> In sections 126.96.36.199(e) and 188.8.131.52(h) change the organizationName line to
> - organizationName (OID 184.108.40.206): This field MUST be present and the
> contents MUST contain either the Subject CA’s name or DBA as verified
> under Section 220.127.116.11. The CA may include information in this field that differs
> slightly from the verified name, such as common variations or abbreviations,
> provided that the CA documents the difference and any abbreviations used
> are locally accepted abbreviations; e.g., if the official record shows “Company
> Name Incorporated”, the CA MAY use “Company Name Inc.” or “Company
> In section 18.104.22.168(d), replace the text with “The cA field MUST NOT be true."
> Replace "Subordiate" with "Subordinate" in the title of 22.214.171.124.
> In section 9.6.1 item 6:
> * Insert "are the same entity or" immediately prior to "are Affiliated";
> * Remove "and accepted".
> In section 9.6.3 item 2, replace "maintain sole control" with "assure control".
> In the following sections, replace all occurrences of "Subscriber or Terms of
> * Section 1.6.1, in the definition of "Subscriber"
> * Section 4.1.2
> * Section 126.96.36.199
> * Section 4.9.11
> * Section 9.6.1
> * Section 9.6.3
> -- MOTION ENDS --
> The review period for this ballot shall commence at 1740 UTC on 26 April
> 2016, and will close at 2200 UTC on 3 May 2016. Unless the motion is
> withdrawn during the review period, the voting period will start immediately
> thereafter and will close at 2200 UTC on 10 May 2016. Votes must be cast by
> posting an on-list reply to this thread.
> A vote in favor of the motion must indicate a clear 'yes' in the response. A
> vote against must indicate a clear 'no' in the response. A vote to abstain must
> indicate a clear 'abstain' in the response. Unclear responses will not be
> counted. The latest vote received from any representative of a voting
> member before the close of the voting period will be counted. Voting
> members are listed here: https://cabforum.org/members/
> Public mailing list
> Public at cabforum.org
More information about the Public