[Servercert-wg] Voting Period Begins: SC-54 v2: Onion cleanup

Inigo Barreira Inigo.Barreira at sectigo.com
Fri Mar 18 16:28:31 UTC 2022 

Sectigo votes yes.

 

De: Servercert-wg <servercert-wg-bounces at cabforum.org> En nombre de Dimitris
Zacharopoulos (HARICA) via Servercert-wg
Enviado el: miércoles, 16 de marzo de 2022 8:07
Para: CA/B Forum Server Certificate WG Public Discussion List
<servercert-wg at cabforum.org>
Asunto: [Servercert-wg] Voting Period Begins: SC-54 v2: Onion cleanup

 

CAUTION: This email originated from outside of the organization. Do not
click links or open attachments unless you recognize the sender and know the
content is safe.

 

 


PURPOSE OF BALLOT


Over the years the Server Certificate WG captured several minor cleanup
issues related to Onion Certificates.

Here is a summary of the changes:

*	Created a Defined Term for Onion Domain Name. We discovered a lot of
repeated long text describing what an onion certificate is, and thought it
would be best adding as a definition
*	Removed EVG Appendix F contents since v2 onion certificates can't be
used anymore; it is kept as a placeholder
*	Removed the obligation for the CA to ensure that the
applicantSigningNonce includes specific entropy.
*	Tweaked 3.2.2.8 a bit in the hopes of making the initial sentence
shorter and easier to read.

The following motion has been proposed by Dimitris Zacharopoulos of HARICA
and endorsed by Ben Wilson of Mozilla and Corey Bonnell of DigiCert.




MOTION BEGINS


This ballot modifies the “Baseline Requirements for the Issuance and
Management of Publicly-Trusted Certificates” (“Baseline Requirements”),
based on Version 1.8.1:
MODIFY the Baseline Requirements as specified in the following redline:

*
https://github.com/cabforum/servercert/compare/65e80e07855ecc1d2264c040ecc7d
398f997d2c5...
<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.co
m%2Fcabforum%2Fservercert%2Fcompare%2F65e80e07855ecc1d2264c040ecc7d398f997d2
c5...13220d81c0001f79ffa239a00018aa5c556e9afd&data=04%7C01%7Cinigo.barreira%
40sectigo.com%7C0f86ec4b11f94976e0f408da071b9853%7C0e9c48946caa465d96604b696
8b49fb7%7C0%7C0%7C637830112361992539%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjA
wMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=wxFrOC4N6uJ
CjUQNPMjNb2yHU8NcHpPycEHEWJ210j0%3D&reserved=0>
13220d81c0001f79ffa239a00018aa5c556e9afd
<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.co
m%2Fcabforum%2Fservercert%2Fcompare%2F65e80e07855ecc1d2264c040ecc7d398f997d2
c5...13220d81c0001f79ffa239a00018aa5c556e9afd&data=04%7C01%7Cinigo.barreira%
40sectigo.com%7C0f86ec4b11f94976e0f408da071b9853%7C0e9c48946caa465d96604b696
8b49fb7%7C0%7C0%7C637830112361992539%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjA
wMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=wxFrOC4N6uJ
CjUQNPMjNb2yHU8NcHpPycEHEWJ210j0%3D&reserved=0> 

This ballot modifies the “Guidelines for the Issuance and Management of
Extended Validation Certificates” (“EV Guidelines”), based on Version 1.7.8:
MODIFY the EV Guidelines as defined in the following redline:

*
https://github.com/cabforum/servercert/compare/cda0f92ee70121fd5d692685b97eb
b6669c74fb7...
<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.co
m%2Fcabforum%2Fservercert%2Fcompare%2Fcda0f92ee70121fd5d692685b97ebb6669c74f
b7...13220d81c0001f79ffa239a00018aa5c556e9afd&data=04%7C01%7Cinigo.barreira%
40sectigo.com%7C0f86ec4b11f94976e0f408da071b9853%7C0e9c48946caa465d96604b696
8b49fb7%7C0%7C0%7C637830112361992539%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjA
wMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=xa6mPxxb6Bt
Z6ZxVa5%2Bq0t7VSP68ueuSwuzUXBqNCFw%3D&reserved=0>
13220d81c0001f79ffa239a00018aa5c556e9afd
<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.co
m%2Fcabforum%2Fservercert%2Fcompare%2Fcda0f92ee70121fd5d692685b97ebb6669c74f
b7...13220d81c0001f79ffa239a00018aa5c556e9afd&data=04%7C01%7Cinigo.barreira%
40sectigo.com%7C0f86ec4b11f94976e0f408da071b9853%7C0e9c48946caa465d96604b696
8b49fb7%7C0%7C0%7C637830112361992539%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjA
wMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=xa6mPxxb6Bt
Z6ZxVa5%2Bq0t7VSP68ueuSwuzUXBqNCFw%3D&reserved=0> 


MOTION ENDS


This ballot proposes a Final Maintenance Guideline. The procedure for
approval of this ballot is as follows: 


Discussion (7+ days)


Start Time: 2022-03-08 19:00:00 UTC
End Time: Not before 2022-03-15 19:00:00 UTC 


Vote for approval (7 days)


Start Time: 2022-03-16 07:00:00 UTC
End Time: 2022-03-23 07:00:00 UTC 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20220318/ee84294e/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6853 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20220318/ee84294e/attachment-0001.p7s>

More information about the Servercert-wg mailing list