[Servercert-wg] Discussion Period Begins on Ballot SC50: Remove the requirements of 4.1.1

Tim Hollebeek tim.hollebeek at digicert.com
Fri Nov 5 16:21:06 UTC 2021 

One of the things that was brought up in the CSWG is that this affects the code 
signing BRs as well.  That's not a problem, I'm just bringing it up in this context
for awareness.

-Tim

> -----Original Message-----
> From: Servercert-wg <servercert-wg-bounces at cabforum.org> On Behalf Of
> Clint Wilson via Servercert-wg
> Sent: Thursday, October 28, 2021 12:00 PM
> To: ServerCert CA/BF <servercert-wg at cabforum.org>
> Subject: [Servercert-wg] Discussion Period Begins on Ballot SC50: Remove
> the requirements of 4.1.1
> 
> This email begins the discussion period for Ballot SC50: Remove the
> requirements of 4.1.1
> 
> BALLOT SC50: Remove the requirements of 4.1.1
> 
> PURPOSE OF BALLOT
> 
> When attempting to reduce the retention period required for audit logs and
> data archives, the NetSec Subcommittee also identified gaps in which data a
> CA is required to retain which make it somewhat difficult to make the desired
> adjustments to retention period. Specifically, a CA is currently required to
> retain, but not use, data as defined in 4.1.1 of the BRs.
> While reviewing the intent, purpose, and real-world usage around section
> 4.1.1, it became apparent that there’s little value in requiring CAs to maintain
> a database for which there is no prescribed purpose or required action. This
> ballot seeks to address this gap by replacing section 4.1.1 with "No
> stipulation." as is appropriate based on current expectations here.
> 
> The following motion has been proposed by Clint Wilson of Apple and
> endorsed by Trevoli Ponds-White of Amazon and Dustin Hollenback of
> Microsoft.
> 
> -----Motion Begins-----
> 
> This ballot modifies the “Baseline Requirements for the Issuance and
> Management of Publicly-Trusted Certificates” as defined in the following
> redline, based on Version 1.8.0:
> 
> https://github.com/cabforum/servercert/compare/cda0f92ee70121fd5d692
> 685b97ebb6669c74fb7..8b2681c3f93bbc9fbe83ab9d67999629db630e94
> 
> -----Motion Ends-----
> 
> This ballot proposes a Final Maintenance Guideline. The procedure for
> approval of this ballot is as follows:
> 
> Discussion (7+ days)
> 
> Start Time: October 28 16:00 UTC
> End Time: November 4 16:00 UTC
> 
> Vote for approval (7 days)
> 
> Start Time: TBD
> End Time: TBD
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4940 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20211105/64aea8b9/attachment.p7s>

More information about the Servercert-wg mailing list