[cabfpub] [EXT] Re: Ballot 194 – Effective Date of Ballot 193 Provisions

Steve Medin Steve_Medin at symantec.com
Mon Apr 3 21:46:43 UTC 2017

My point is that they do. A lot. It pays bills and employs people. It causes an industry.


It understates the day to day effort in operating a CA to dismiss the impact that the site operator needs to apply.


The rest of the message does indeed apply on April 22, and some CAs will need to scramble to operate that day.


From: Ryan Sleevi [mailto:sleevi at google.com] 
Sent: Monday, April 03, 2017 1:00 PM
To: Steve Medin <Steve_Medin at symantec.com>
Cc: CA/Browser Forum Public Discussion List <public at cabforum.org>
Subject: Re: [EXT] Re: [cabfpub] Ballot 194 – Effective Date of Ballot 193 Provisions




On Mon, Apr 3, 2017 at 3:57 PM, Steve Medin <Steve_Medin at symantec.com <mailto:Steve_Medin at symantec.com> > wrote:

On April 22, nearly one third of the authentication databases of all certificate authorities is invalidated. All data currently held from work done between 825 days and 39 months ago is wiped from use when it could have been consumed until March 1 if 193 was written as Chris seems to have intended.


But that doesn't matter unless someone applies for a certificate.


You don't need to reissue all of those certificates. Only ones which are expired and/or need to be reissued.


This exact same problem would occur on March 1, 2018. Literally everything else in your message still applies, so please help me understand what makes this different at all.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20170403/91de7899/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5744 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20170403/91de7899/attachment-0001.p7s>

More information about the Public mailing list