[cabfpub] Draft CAA motion (3)

Gervase Markham gerv at mozilla.org
Fri Jan 13 07:10:30 MST 2017


On 13/01/17 13:13, Doug Beattie wrote:
> As it stands, this means that CAs must support Issuer Critical, issue
> and issuewild today and then to support other Property Tags as they are
> added (without an indication of when the need to be supported).  The
> spec also says that you must check the specified CNAME or DNAME record
> if they exist.  Are all of these checks required and how do we handle
> new Property Tags?

You are right that the RFC has several extension mechanisms and it's not
clear how changes would be incorporated. What do you suggest? Do we
"freeze" the RFC and extension registries at a particular date, and then
move that date via further ballots?

As for which checks are required, the answer is whatever the RFC says,
given that its authors probably thought about what was required quite
carefully. What problem are you highlighting?

Gerv


More information about the Public mailing list