[cabfpub] Two amendments to Ballot 190

Dimitris Zacharopoulos jimmy at it.auth.gr
Tue Sep 19 09:37:46 UTC 2017


HARICA votes "yes" to ballot 190.

We would also like to thank the Validation WG and the Forum members that 
contributed to clarifying the language of the 10 Domain Validation 
methods in section 3.2.2.4.


Dimitris.

On 11/9/2017 4:01 μμ, Kirk Hall via Public wrote:
>
> The proposer and endorsers are making two minor amendments to Ballot 
> 190 as follows.
>
> 1) In BR 3.2.2.4.6 "Agreed-Upon Change to Website", the current draft 
> Version 8 still has the typo "Request Value" that crept in sometime 
> around BR 1.4. It should be "Random Value". *_Accordingly, BR 
> 3.2.2.4.6 in Ballot 190 is changed to read as follows:_*
>
> *3.2.2.4.6 Agreed-Upon Change to Website*
>
> Confirming the Applicant's control over the FQDN by confirming one of 
> the following under the "/.well-known/pki-validation" directory, or 
> another path registered with IANA for the purpose of Domain 
> Validation, on the Authorization Domain Name that is accessible by the 
> CA via HTTP/HTTPS over an Authorized Port:
>
> 1.The presence of Required Website Content contained in the content of 
> a file. The entire Required Website Content MUST NOT appear in the 
> request used to retrieve the file or web page, or
>
> 2.The presence of the Request Token or /Request/ *_Random_* Value 
> contained in the content of a file where the Request Token or Random 
> Value MUST NOT appear in the request. ***
>
> 2) In Version 8 of BR 3.2.2.4.7, "DNS Change", the current language says:
>
> "Confirming the Applicant's control over the FQDN by confirming the 
> presence of a Random Value or Request Token _for either_ in a DNS 
> CNAME, TXT or CAA record _for either_ 1) an Authorization Domain Name; 
> or 2) an Authorization Domain Name that is prefixed with a label that 
> begins with an underscore character."
>
> Note that "for either" appears twice in the sentence, and we think the 
> first occurrence should be deleted. *_Accordingly, BR 3.2.2.4.7 in 
> Ballot 190 is changed to read as follows:_*
>
> *3.2.2.4.7  DNS Change*
>
> Confirming the Applicant's control over the FQDN by confirming the 
> presence of a Random Value or Request Token /for either/ in a DNS 
> CNAME, TXT or CAA record for either 1) an Authorization Domain Name; 
> or 2) an Authorization Domain Name that is prefixed with a label that 
> begins with an underscore character.
>
> Voting on Ballot 190 will begin tomorrow, and the text has been 
> changed as shown above.
>
>
>
> _______________________________________________
> Public mailing list
> Public at cabforum.org
> https://cabforum.org/mailman/listinfo/public

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20170919/67b74269/attachment-0003.html>


More information about the Public mailing list