[Servercert-wg] Draft Ballot SC-0XX: Subscriber Agreement and Terms of Use Consolidation

Dustin Hollenback Dustin.Hollenback at microsoft.com
Wed Sep 6 18:05:05 UTC 2023


Thanks for the suggestion, Bruce. We'll incorporate the definition change into the next revision of the draft ballot.

"**Subscriber Agreement**: A set of terms and conditions accepted by the Applicant/Subscriber that specifies the rights and responsibilities of the Applicant/Subscriber and the CA."


From: Bruce Morton <Bruce.Morton at entrust.com>
Sent: Tuesday, September 5, 2023 12:04 PM
To: Dustin Hollenback <Dustin.Hollenback at microsoft.com>; CA/B Forum Server Certificate WG Public Discussion List <servercert-wg at cabforum.org>
Subject: [EXTERNAL] RE: Draft Ballot SC-0XX: Subscriber Agreement and Terms of Use Consolidation

You don't often get email from bruce.morton at entrust.com<mailto:bruce.morton at entrust.com>. Learn why this is important<https://aka.ms/LearnAboutSenderIdentification>
Hi Dustin,

Thanks for the update. Would still like to know why the Subscriber Agreement definition is so narrow, "Provisions that the Applicant/Subscriber accepts regarding the safekeeping and acceptable uses of the Key Pair and Certificate issued in accordance with these Requirements", but the TLS BRs items to be included which are greater than this scope?

Entrust would prefer the definition to be, "A set of terms and conditions accepted by the Applicant/Subscriber that specifies the rights and responsibilities of the Applicant/Subscriber and the CA." Would be great to get your feedback on this proposal.


Thanks again, Bruce.

From: Servercert-wg <servercert-wg-bounces at cabforum.org<mailto:servercert-wg-bounces at cabforum.org>> On Behalf Of Dustin Hollenback via Servercert-wg
Sent: Friday, September 1, 2023 9:41 PM
To: servercert-wg at cabforum.org<mailto:servercert-wg at cabforum.org>
Subject: [EXTERNAL] [Servercert-wg] Draft Ballot SC-0XX: Subscriber Agreement and Terms of Use Consolidation

Hello all, We are looking for feedback on the following draft ballot as well as endorsers. Thank you, Dustin ----------------------------------------------------------------------------------------------------------------------------------

Hello all,

We are looking for feedback on the following draft ballot as well as endorsers.
Thank you,


Dustin

----------------------------------------------------------------------------------------------------------------------------------

Purpose of Ballot SC-0XX: Subscriber Agreement and Terms of Use Consolidation
This ballot proposes updates to the Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates related to Subscriber Agreements and Terms of Use. It combines the requirements for both into only the Subscriber Agreement and clarifies the requirement language. It removes the requirement and reference to "Terms of Use".

Notes:
*              This removes any ambiguity to ensure that there is no requirement that the Subscriber Agreement be legally enforceable when the CA and Subscriber are affiliated.
*              This updates definitions for "Subscriber" and "Subscriber Agreement" and removes the definition for "Terms of Use" as these separate concepts are creating unnecessary work for CAs and Subscribers without adding any value when separated.
*              As observed with other ballots in the past, minor administrative updates must be made to the proposed ballot text before publication such that the appropriate Version # and Change History are accurately represented (e.g., to indicate these changes will be represented in Version 2.0.2).


The following motion has been proposed by Ben Wilson of Mozilla and Dustin Hollenback of Microsoft. And, endorsed by <NEEDED> of <NEEDED> and <NEEDED> of <NEEDED>.

- Motion Begins -

This ballot modifies the "Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates" ("Baseline Requirements"), based on Version 2.0.1.

MODIFY the Baseline Requirements as specified in the following Redline: https://github.com/cabforum/servercert/compare/a0360b61e73476959220dc328e3b68d0224fa0b3..663695b8319c0cd32e0060bb9304ecd32e3737a1<https://urldefense.com/v3/__https:/github.com/cabforum/servercert/compare/a0360b61e73476959220dc328e3b68d0224fa0b3..663695b8319c0cd32e0060bb9304ecd32e3737a1__;!!FJ-Y8qCqXTj2!cTf7q-EEAEVm0LT2ug70IF3s4t8FCXgREddMCUuLm1rTgEuN6Kse1ScaMIvCrxQiyQbZDkyGiDpbkZHIVjGH05JaZfEwqw$>

- Motion Ends -


This ballot proposes a Final Maintenance Guideline. The procedure for approval of this ballot is as follows:

Discussion (13+ days)
*                     Start time: YYYY-MM-DD 19:00:00 UTC
*                     End time: YYYY-MM-DD 19:00:00 UTC

Vote for approval (7 days)
*                     Start time: YYYY-MM-DD 19:00:00 UTC
*                     End time: YYYY-MM-DD 19:00:00 UTC


Any email and files/attachments transmitted with it are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20230906/fb507c6e/attachment-0001.html>


More information about the Servercert-wg mailing list