[Servercert-wg] Draft Ballot SC-0XX: Subscriber Agreement and Terms of Use Consolidation
Ben Wilson
bwilson at mozilla.com
Fri Sep 29 16:43:34 UTC 2023
All,
Dustin and I made the change suggested by Bruce -
https://github.com/BenWilson-Mozilla/servercert/commit/47423176206cca97eb8d4c3678f65f26f587c3c5
We modified item 4 in BR section 9.6.3, as discussed during the Validation
Subcommittee meeting a few weeks ago:
https://github.com/BenWilson-Mozilla/servercert/commit/87995c75537c5bfbc8694eab615a1ed807ec1415
Yesterday, I made additional edits to the draft ballot language.
Here they are:
In BR section 4.9.1.1, replaced Applicant with Subscriber
https://github.com/BenWilson-Mozilla/servercert/commit/b9e842395baf337b76cd55a3b5b3f89195838780
In BR section 9.6.3, replaced Applicant and Subscriber with
Applicant/Subscriber.
https://github.com/BenWilson-Mozilla/servercert/commit/da6cc2c6a7534f327be9ef03310ad270d375a961
Changed definition of Applicant and added definition of Applicant/Subscriber
https://github.com/BenWilson-Mozilla/servercert/commit/a017d5092583365e8b330e87f794639821aac056
Changed Applicant to Applicant/Subscriber in third paragraph of BR section 3.2.5
https://github.com/BenWilson-Mozilla/servercert/commit/105bba5145c9ad0b157b81f544a603206c02f31b
We are seeking one more endorser to work on this with us and to get a
ballot number assigned to this effort.
Also, we are preparing to review this ballot language during the Server
Certificate WG meeting at the F2F next Wednesday afternoon.
Thanks,
Ben
On Wed, Sep 6, 2023 at 12:05 PM Dustin Hollenback via Servercert-wg <
servercert-wg at cabforum.org> wrote:
> Thanks for the suggestion, Bruce. We’ll incorporate the definition change
> into the next revision of the draft ballot.
>
> “**Subscriber Agreement**: A set of terms and conditions accepted by the
> Applicant/Subscriber that specifies the rights and responsibilities of the
> Applicant/Subscriber and the CA.”
>
>
>
>
>
> *From:* Bruce Morton <Bruce.Morton at entrust.com>
> *Sent:* Tuesday, September 5, 2023 12:04 PM
> *To:* Dustin Hollenback <Dustin.Hollenback at microsoft.com>; CA/B Forum
> Server Certificate WG Public Discussion List <servercert-wg at cabforum.org>
> *Subject:* [EXTERNAL] RE: Draft Ballot SC-0XX: Subscriber Agreement and
> Terms of Use Consolidation
>
>
>
> You don't often get email from bruce.morton at entrust.com. Learn why this
> is important <https://aka.ms/LearnAboutSenderIdentification>
>
> Hi Dustin,
>
>
>
> Thanks for the update. Would still like to know why the Subscriber
> Agreement definition is so narrow, “Provisions that the
> Applicant/Subscriber accepts regarding the safekeeping and acceptable uses
> of the Key Pair and Certificate issued in accordance with these
> Requirements”, but the TLS BRs items to be included which are greater than
> this scope?
>
>
>
> Entrust would prefer the definition to be, “A set of terms and conditions
> accepted by the Applicant/Subscriber that specifies the rights and
> responsibilities of the Applicant/Subscriber and the CA.” Would be great to
> get your feedback on this proposal.
>
>
>
>
>
> Thanks again, Bruce.
>
>
>
> *From:* Servercert-wg <servercert-wg-bounces at cabforum.org> *On Behalf Of *Dustin
> Hollenback via Servercert-wg
> *Sent:* Friday, September 1, 2023 9:41 PM
> *To:* servercert-wg at cabforum.org
> *Subject:* [EXTERNAL] [Servercert-wg] Draft Ballot SC-0XX: Subscriber
> Agreement and Terms of Use Consolidation
>
>
>
> Hello all, We are looking for feedback on the following draft ballot as
> well as endorsers. Thank you, Dustin
> ----------------------------------------------------------------------------------------------------------------------------------
>
>
>
>
> Hello all,
>
>
>
> We are looking for feedback on the following draft ballot as well as
> endorsers.
>
> Thank you,
>
>
>
>
>
> Dustin
>
>
>
>
> ----------------------------------------------------------------------------------------------------------------------------------
>
>
>
> *Purpose of Ballot SC-0XX: Subscriber Agreement and Terms of Use
> Consolidation*
>
> This ballot proposes updates to the Baseline Requirements for the Issuance
> and Management of Publicly-Trusted Certificates related to Subscriber
> Agreements and Terms of Use. It combines the requirements for both into
> only the Subscriber Agreement and clarifies the requirement language. It
> removes the requirement and reference to "Terms of Use".
>
>
>
> Notes:
>
> • This removes any ambiguity to ensure that there is no
> requirement that the Subscriber Agreement be legally enforceable when the
> CA and Subscriber are affiliated.
>
> • This updates definitions for “Subscriber” and “Subscriber
> Agreement” and removes the definition for “Terms of Use” as these separate
> concepts are creating unnecessary work for CAs and Subscribers without
> adding any value when separated.
>
> • As observed with other ballots in the past, minor
> administrative updates must be made to the proposed ballot text before
> publication such that the appropriate Version # and Change History are
> accurately represented (e.g., to indicate these changes will be represented
> in Version 2.0.2).
>
>
>
>
>
> The following motion has been proposed by Ben Wilson of Mozilla and Dustin
> Hollenback of Microsoft. And, endorsed by <NEEDED> of <NEEDED> and <NEEDED>
> of <NEEDED>.
>
>
>
> *— Motion Begins —*
>
>
>
> This ballot modifies the “Baseline Requirements for the Issuance and
> Management of Publicly-Trusted Certificates” (“Baseline Requirements”),
> based on Version 2.0.1.
>
>
>
> MODIFY the Baseline Requirements as specified in the following Redline:
> https://github.com/cabforum/servercert/compare/a0360b61e73476959220dc328e3b68d0224fa0b3..663695b8319c0cd32e0060bb9304ecd32e3737a1
> <https://urldefense.com/v3/__https:/github.com/cabforum/servercert/compare/a0360b61e73476959220dc328e3b68d0224fa0b3..663695b8319c0cd32e0060bb9304ecd32e3737a1__;!!FJ-Y8qCqXTj2!cTf7q-EEAEVm0LT2ug70IF3s4t8FCXgREddMCUuLm1rTgEuN6Kse1ScaMIvCrxQiyQbZDkyGiDpbkZHIVjGH05JaZfEwqw$>
>
>
>
> *— Motion Ends —*
>
>
>
>
>
> This ballot proposes a Final Maintenance Guideline. The procedure for
> approval of this ballot is as follows:
>
>
>
> *Discussion (13+ days)*
>
> • Start time: YYYY-MM-DD 19:00:00 UTC
>
> • End time: YYYY-MM-DD 19:00:00 UTC
>
>
>
> *Vote for approval (7 days)*
>
> • Start time: YYYY-MM-DD 19:00:00 UTC
>
> • End time: YYYY-MM-DD 19:00:00 UTC
>
>
>
>
>
> *Any email and files/attachments transmitted with it are intended solely
> for the use of the individual or entity to whom they are addressed. If this
> message has been sent to you in error, you must not copy, distribute or
> disclose of the information it contains. Please notify Entrust immediately
> and delete the message from your system.*
> _______________________________________________
> Servercert-wg mailing list
> Servercert-wg at cabforum.org
> https://lists.cabforum.org/mailman/listinfo/servercert-wg
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20230929/fdeeae02/attachment.html>
More information about the Servercert-wg
mailing list