[Servercert-wg] Voting Begins on Ballot SC47v2: Sunset subject:organizationalUnitName
Dimitris Zacharopoulos (HARICA)
dzacharo at harica.gr
Tue Jun 29 05:56:53 UTC 2021
HARICA votes "yes" to ballot SC47.
We believe that the /organizationalUnitName /attribute is a natural
extension of the /organizationName/ attribute, describing the "unit" -
"sub-unit" relationship. As stated in related discussions, we believe
that if the "sub-unit" information was submitted by the Legal
representative (or dully authorized person) of the associated
organization who is responsible for the parent "unit", in an
authenticated and verified way (verified that this information comes
from the authorized person responsible for the organization), in our
opinion the /organizationalUnitName /would be reasonably validated.
HARICA respects the decisions from the Browser Members to deprecate this
field because there is existing evidence that this field was
historically abused by CAs (in some cases to convey marketing, tracking
or other non-organizational related information). Unfortunately the SCWG
did not reach consensus for improved validation language that would
prevent possible misuse/abuse of this field.
Dimitris.
On 22/6/2021 2:59 μ.μ., Paul van Brouwershaven via Servercert-wg wrote:
> This email begins the voting periodfor Ballot SC47v2: Sunset
> subject:organizationalUnitName.
>
> Purpose of Ballot:
>
> This Ballot sets a sunset date for the
> `subject:organizationalUnitName` as several earlier attempts to
> strengthen the validation failed to gain consensus.
>
> The following motion has been proposed by Paul van Brouwershaven of
> Entrust and endorsed by Ben Wilson of Mozilla and Chema Lopez of
> Firmaprofesional.
>
> It can be viewed on GitHub as
> https://github.com/cabforum/servercert/pull/282
>
> ===== MOTION BEGINS =====
>
> This ballot modifies the “Baseline Requirements for the Issuance and
> Management of Publicly-Trusted Certificates” (“Baseline
> Requirements”), based on Version 1.7.6:
>
> MODIFY the Baseline Requirements as specified in the following Redline:
>
> https://github.com/cabforum/servercert/compare/cf4e17a43977dcf7cb9c9e41efd2df4be4707e13...160f860dc1eccaa273bc8001dadaf07c4bba9dbd
>
> This ballot modifies the “Guidelines for the Issuance and Management
> of Extended Validation Certificates” (“EV Guidelines”) as follows,
> based on Version 1.7.6:
>
> MODIFY the EV Guidelines as defined in the following redline:
>
> https://github.com/cabforum/servercert/compare/cf4e17a43977dcf7cb9c9e41efd2df4be4707e13...160f860dc1eccaa273bc8001dadaf07c4bba9dbd
>
> ===== MOTION ENDS =====
>
> This ballot proposes a Final Maintenance Guideline.
>
> The procedure for approval of this ballot is as follows:
>
> Discussion (7+ days)
>
> Start Time: 2021-06-14 8:00:00 UTC
> End Time: 2021-06-21 8:00:00 UTC
>
> Vote for approval (7 days)
>
> Start Time: 2021-06-22 12:00:00 UTC
> End Time: 2021-06-29 12:00:00 UTC
>
> _______________________________________________
> Servercert-wg mailing list
> Servercert-wg at cabforum.org
> https://lists.cabforum.org/mailman/listinfo/servercert-wg
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20210629/2cf5acd1/attachment.html>
More information about the Servercert-wg
mailing list