[cabfpub] Two amendments to Ballot 190

cornelia.enke at swisssign.com cornelia.enke at swisssign.com
Fri Sep 15 15:34:39 MST 2017 

SwissSign votes "Yes" on ballot 190

 

Best Regards Conny

 

 

Von: Public [mailto:public-bounces at cabforum.org] Im Auftrag von Kirk Hall
via Public
Gesendet: Montag, 11. September 2017 15:01
An: CA/Browser Forum Public Discussion List
Betreff: [cabfpub] Two amendments to Ballot 190

 

The proposer and endorsers are making two minor amendments to Ballot 190 as
follows.

 

1) In BR 3.2.2.4.6 "Agreed-Upon Change to Website", the current draft
Version 8 still has the typo "Request Value" that crept in sometime around
BR 1.4. It should be "Random Value".  Accordingly, BR 3.2.2.4.6 in Ballot
190 is changed to read as follows:

 

3.2.2.4.6 Agreed-Upon Change to Website

 

Confirming the Applicant's control over the FQDN by confirming one of the
following under the "/.well-known/pki-validation" directory, or another path
registered with IANA for the purpose of Domain Validation, on the
Authorization Domain Name that is accessible by the CA via HTTP/HTTPS over
an Authorized Port:

 

1.       The presence of Required Website Content contained in the content
of a file. The entire Required Website Content MUST NOT appear in the
request used to retrieve the file or web page, or

 

2.       The presence of the Request Token or Request Random Value contained
in the content of a file where the Request Token or Random Value MUST NOT
appear in the request. ***

 

2) In Version 8 of BR 3.2.2.4.7, "DNS Change", the current language says:

 

"Confirming the Applicant's control over the FQDN by confirming the presence
of a Random Value or Request Token for either in a DNS CNAME, TXT or CAA
record for either 1) an Authorization Domain Name; or 2) an Authorization
Domain Name that is prefixed with a label that begins with an underscore
character."  

 

Note that "for either" appears twice in the sentence, and we think the first
occurrence should be deleted.  Accordingly, BR 3.2.2.4.7 in Ballot 190 is
changed to read as follows:

 

3.2.2.4.7  DNS Change

Confirming the Applicant's control over the FQDN by confirming the presence
of a Random Value or Request Token for either in a DNS CNAME, TXT or CAA
record for either 1) an Authorization Domain Name; or 2) an Authorization
Domain Name that is prefixed with a label that begins with an underscore
character.

 

Voting on Ballot 190 will begin tomorrow, and the text has been changed as
shown above.

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/public/attachments/20170915/3617cbad/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5820 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/public/attachments/20170915/3617cbad/attachment.p7s>

More information about the Public mailing list