[Servercert-wg] Ballot SC42v2: 398-day IP Address and Domain Validation Reuse Period

Ben Wilson bwilson at mozilla.com
Thu Apr 8 20:47:34 UTC 2021


Agreed - see new subject line and title below.

On Thu, Apr 8, 2021 at 12:01 PM Doug Beattie <doug.beattie at globalsign.com>
wrote:

> Hi Ben,
>
>
>
> This is a nit-pick, but if we’re going to see the name of the ballot in
> specs for a long time, I’d suggest adding “domain and IP address” into the
> title of the ballot so it’s not confused with some other data reuse
> requirement.
>
>
>
>   Ballot SC42v2: 398-day IP address and Domain Validation Reuse Period,
>
> or
>
>   Ballot SC42v2: Limit Domain and IP address Validation re-use to 398 days
>
> or
>
>   Ballot SC42v2: 398-day Domain Reuse Period
>
> or similar…
>
>
>
> Just a suggestion.
>
> Doug
>
>
>
> *From:* Servercert-wg <servercert-wg-bounces at cabforum.org> *On Behalf Of *Ben
> Wilson via Servercert-wg
> *Sent:* Thursday, April 8, 2021 1:13 PM
> *To:* CA/B Forum Server Certificate WG Public Discussion List <
> servercert-wg at cabforum.org>
> *Subject:* [Servercert-wg] Ballot SC42v2: 398-day Reuse Period
>
>
>

This email begins the public discussion period of Ballot SC42v2: 398-day IP
Address and Domain Validation Reuse Period.


> This email begins the public discussion period of Ballot SC42: 398-day
> Reuse Period. Pursuant to section 2.3 of the Bylaws, "The discussion period
> then shall take place for at least seven (7) calendar days before votes are
> cast. At any time, a new version of the ballot (marked with a
> distinguishing version number) may be posted by the proposer in the same
> manner as the original. Once no new version of the ballot has been posted
> for seven (7) calendar days, the proposer may end the discussion period and
> start the voting period by reposting the final version of the ballot and
> clearly indicating that voting is to begin, along with the start and end
> dates and times (including time zone) for the voting period."
>
>
>
> *Type of Ballot:*
>
>
> This is a ballot to adopt two Final Maintenance Guidelines which modify
> the Forum's Baseline Requirements for the Issuance and Management of
> Publicly-Trusted Certificates (BRs) and the Guidelines for the Issuance and
> Management of Extended Validation Certificates (EVGs).
>
> *Purpose of Ballot:*
>
> This ballot changes validation reuse periods for FQDN and IP Address
> validation to 398 days in section 4.2.1 of the BRs and for all purposes in
> section 11.14.3 of the EVGs. The ballot does not change the 825-day reuse
> period in section 4.2.1. of the BRs for Organizational Validation (OV)
> information.
>
> *Specifically:*
>
> * It inserts as the last sentence in the third paragraph of BR section
> 4.2.1, "Effective 2021-10-01, for validation of Domain Names and IP
> Addresses according to Section 3.2.2.4 and 3.2.2.5, any reused data,
> document, or completed validation MUST be obtained no more than 398 days
> prior to issuing the Certificate."
>
> * It replaces eight instances of "thirteen months" or "thirteen-month" in
> EVG section 11.14.3 with 398 days.
>
> The following motion has been proposed by Ben Wilson of Mozilla and
> endorsed by Dimitris Zacharopoulos of HARICA and Chema Lopez of
> Firmaprofesional.
>
> * – MOTION BEGINS –*
>
> This ballot modifies the “Baseline Requirements for the Issuance and
> Management of Publicly-Trusted Certificates” (“BRs”), based on Version
> 1.7.3:
>
>
>
> Insert as the last sentence in the third paragraph of section 4.2.1 of the
> BRs, "Effective 2021-10-01, for validation of Domain Names and IP
> Addresses according to Section 3.2.2.4 and 3.2.2.5, any reused data,
> document, or completed validation MUST be obtained no more than 398 days
> prior to issuing the Certificate." as illustrated in the following
> redline on GitHub:
> https://github.com/cabforum/servercert/compare/9672b03bec91ad9a80f826e928e47f5c1f82964b...7cd105daf3baba01579c167d9fc10afacd49c503
>
>
>
> This ballot modifies the “Guidelines for the Issuance and Management of
> Extended Validation Certificates” (“EVGs”) as follows, based on Version
> 1.7.4:
>
>
>
> REPLACE all eight instances of "thirteen months" (or "thirteen-month") in
> section 11.14.3 of the EVGs with 398 days and 398-day, respectively, as
> illustrated in the following redline on GitHub:
> https://github.com/cabforum/servercert/compare/9672b03bec91ad9a80f826e928e47f5c1f82964b...7cd105daf3baba01579c167d9fc10afacd49c503
>
>
> * – MOTION ENDS –*
>
> This ballot proposes two Final Maintenance Guidelines.
>
> The procedure for approval of this ballot is as follows:
>
> Discussion (7+ days)
>
> Start Time: 2021-04-08 17:00:00 UTC
>
> End Time: TBD
>
> Vote for approval (7 days)
>
> Start Time: TBD
>
> End Time: TBD
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20210408/0bfafdd6/attachment.html>


More information about the Servercert-wg mailing list