[cabfpub] Notice of Review Period - Ballot 199 - Require commonName in Root and Intermediate Certificates
Kirk Hall
Kirk.Hall at entrustdatacard.com
Tue May 9 23:20:52 UTC 2017
NOTICE OF REVIEW PERIOD - BALLOT 199
This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.2). This Review Period is for Final Maintenance Guidelines (30 day Review Period). A complete draft of the Draft Guideline that is the subject of this Review Notice is attached.
Date Review Notice Sent: May 9, 2017
Ballot for Review: Ballot 199 - Require commonName in Root and Intermediate Certificates
Start of Review Period: May 9, 2017 at 23:30 UTC
End of Review Period: June 8, 2017 at 23:30 UTC
Please forward any Exclusion Notice relating to Essential Claims to the Chair by email to kirk.hall at entrustdatacard.com<mailto:kirk.hall at entrustdatacard.com> before the end of the Review Period. See current version of CA/Browser Forum Intellectual Property Rights Policy for details.
(Optional form of Exclusion Notice is attached)
Ballot 199 - Require commonName in Root and Intermediate Certificates
-- MOTION BEGINS --
Make the following changes to the Baseline Requirements:
* Delete 7.1.2.1 (e), which currently defines the Subject Information required in a Root CA Certificate.
* Delete 7.1.2.2 (h), which currently defines the Subject Information required in a Subordinate CA Certificate.
* Rename section 7.1.4.2, currently titled "Subject Information", to "Subject Information - Subscriber Certificates".
* Rename section 7.1.4.3, currently titled "Subject Information - Subordinate CA Certificates" to "Subject Information - Root Certificates and Subordinate CA Certificates".
* Based on the style used in 7.1.4.2.2 and the content from the now-deleted 7.1.2.1 (e) and 7.1.2.2 (h), add the following section 7.1.4.3.1:
7.1.4.3.1 Subject Distinguished Name Fields
Certificate Field: subject:commonName (OID 2.5.4.3)
Required/Optional: Required
Contents: This field MUST be present and the contents SHOULD be an identifier for the certificate such that the certificate's Name is unique across all certificates issued by the issuing certificate.
b. Certificate Field: subject:organizationName (OID 2.5.4.10)
Required/Optional: Required
Contents: This field MUST be present and the contents MUST contain either the Subject CA’s name or DBA as verified under Section 3.2.2.2. The CA may include information in this field that differs slightly from the verified name, such as common variations or abbreviations, provided that the CA documents the difference and any abbreviations used are locally accepted abbreviations; e.g., if the official record shows “Company Name Incorporated”, the CA MAY use “Company Name Inc.” or “Company Name”.
c. Certificate Field: subject:countryName (OID: 2.5.4.6)
Required/Optional: Required
Contents: This field MUST contain the two‐letter ISO 3166‐1 country code for the country in which the CA’s place of business is located.
-- MOTION ENDS --
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20170509/da3c1409/attachment-0002.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Ballot 199 Review Notice and Exclusion Notice Template.pdf
Type: application/pdf
Size: 593720 bytes
Desc: Ballot 199 Review Notice and Exclusion Notice Template.pdf
URL: <http://lists.cabforum.org/pipermail/public/attachments/20170509/da3c1409/attachment-0002.pdf>
More information about the Public
mailing list