[cabfpub] Voting has started on Ballot SC10 – Establishing the Network Security Subcommittee of the SCWG

realsky(CHT) realsky at cht.com.tw
Thu Oct 4 15:38:57 UTC 2018

Chunghwa Telecom votes YES on Ballot SC10.


   Li-Chun Chen

From: Public <public-bounces at cabforum.org<mailto:public-bounces at cabforum.org>> On Behalf Of Kirk Hall via Public
Sent: Thursday, September 27, 2018 5:26 PM
To: CABFPub <public at cabforum.org<mailto:public at cabforum.org>>
Subject: [cabfpub] Voting has started on Ballot SC10 – Establishing the Network Security Subcommittee of the SCWG

Voting ends on 4 October 2018 at 22:00 UTC.

From: Servercert-wg [mailto:servercert-wg-bounces at cabforum.org] On Behalf Of Dimitris Zacharopoulos via Servercert-wg
Sent: Thursday, September 20, 2018 9:02 AM
To: CA/B Forum Server Certificate WG Public Discussion List <servercert-wg at cabforum.org<mailto:servercert-wg at cabforum.org>>
Subject: [Servercert-wg] Ballot SC10 – Establishing the Network Security Subcommittee of the SCWG
Ballot SC10 – Establishing the Network Security Subcommittee of the SCWG

Purpose of Ballot
The Network Security Working Group of the CA/Browser Forum expired on June 19, 2018 under the terms of Ballot 203 which established the Working Group. The Server Certificate Working Group wishes to establish a Network Security Subcommittee pursuant to Bylaws 5.3.1(e).
The following motion has been proposed by Dimitris Zacharopoulos of HARICA and endorsed by Tim Hollebeek of DigiCert and Wayne Thayer of Mozilla.
The Server Certificate Working Group hereby establishes the Network Security Subcommittee as an official Subcommittee.

1. Mission: To improve security policies and practices for Certificate Management Systems encoded in the guidelines maintained by the SCWG.

2. End Date: This Subcommittee shall continue until it is dissolved by a vote of the SCWG
3. Deliverables: The Network Security Subcommittee shall propose ballots to the SCWG to improve the minimal security standards within the mission defined above This includes modifying the existing Network and Certificate System Security Requirements (NCSSR) or to create new requirements, guidelines, or best practices. Among other activities, the Network Security Subcommittee shall perform security analysis on typical CA Management Systems offering options to the Server Certificate Working Group for establishing minimal security standards. Risk analysis will also be used to provide a better understanding of threats and vulnerabilities in Certificate Management Systems. This process can be used to provide better reasoning and justification of existing or future security guidelines.
4. Participation: Any member of the SCWG is eligible and may declare their participation in the Network Security Subcommittee by requesting to be added to the mailing list.
5. Chair: Ben Wilson shall be the initial Chair of the Network Security Subcommittee.  The Subcommittee may change its Chair from time to time by consensus of the Members participating in the Subcommittee or by voting method chosen by the Members by consensus.
6. Communication: Subcommittee communications and documents shall be posted on mailing-lists where the mail-archives are publicly accessible, and the Subcommittee shall publish minutes of its meetings.
7. Effect of SCWG Charter or Forum Bylaws Amendment for Subcommittees: In the event the SCWG Charter or the Forum Bylaws is amended to add general rules governing Chartered Working Group Subcommittees and how they operate (“General Rules”), the provisions of the General Rules shall take precedence over this charter.

The procedure for approval of this ballot is as follows:
Ballot SC10 – Establishing the Network Security Subcommittee of the SCWG

Start time (22:00 UTC)

End time (22:00 UTC)

Discussion (7 days)

20 September 2018

27 September 2018

Vote for approval (7 days)

27 September 2018

4 October 2018

本信件可能包含中華電信股份有限公司機密資訊,非指定之收件者,請勿蒐集、處理或利用本信件內容,並請銷毀此信件. 如為指定收件者,應確實保護郵件中本公司之營業機密及個人資料,不得任意傳佈或揭露,並應自行確認本郵件之附檔與超連結之安全性,以共同善盡資訊安全與個資保護責任. 
Please be advised that this email message (including any attachments) contains confidential information and may be legally privileged. If you are not the intended recipient, please destroy this message and all attachments from your system and do not further collect, process, or use them. Chunghwa Telecom and all its subsidiaries and associated companies shall not be liable for the improper or incomplete transmission of the information contained in this email nor for any delay in its receipt or damage to your system. If you are the intended recipient, please protect the confidential and/or personal information contained in this email with due care. Any unauthorized use, disclosure or distribution of this message in whole or in part is strictly prohibited. Also, please self-inspect attachments and hyperlinks contained in this email to ensure the information security and to protect personal information.

More information about the Public mailing list