[Servercert-wg] [EXTERNAL] [Voting Period Begins] SC-070: Clarify the use of DTPs for Domain Control Validation

Fri Feb 16 14:46:07 UTC 2024

Entrust votes Yes to ballot SC-070.

Bruce.

From: Servercert-wg <servercert-wg-bounces at cabforum.org> On Behalf Of Aaron Gable via Servercert-wg
Sent: Tuesday, February 13, 2024 11:57 AM
To: CA/B Forum Server Certificate WG Public Discussion List <servercert-wg at cabforum.org>
Subject: [EXTERNAL] [Servercert-wg] [Voting Period Begins] SC-070: Clarify the use of DTPs for Domain Control Validation

This new voting period is to fix a typo in the End timestamp of the voting period for the previous version of this ballot. The contents of the motion itself are identical. My apologies for the confusion. This ballot aims to clarify the existing

This new voting period is to fix a typo in the End timestamp of the voting period for the previous version of this ballot. The contents of the motion itself are identical. My apologies for the confusion.

This ballot aims to clarify the existing language around the use of delegated third-parties during domain and IP address control validation. It leaves the existing language in place, and adds specifics for the cases of DNS queries, WHOIS lookups, and contact with the Domain Name Registrat or IP Address Registration Authority.

Additionally, it places these same restrictions on CAA checking, with an effective date of 2024-05-15.

This ballot is proposed by Aaron Gable (ISRG / Let's Encrypt) and endorsed by Mads Henriksveen (Buypass) and Dimitris Zacharopoulos (HARICA). You can view and comment on the github pull request representing this ballot here: https://github.com/cabforum/servercert/puhttps://lists.cabforum.org/pipermail/servercert-wg/2024-February/004174.htmlll/475<https://urldefense.com/v3/__https:/github.com/cabforum/servercert/pull/475__;!!FJ-Y8qCqXTj2!YrHwwcHfyuqHVAYrEtAlYy-O2aF9clidDLNG0uMjeawge0zGMFczhMFec2t7GySPguko0-D7kXnvYnxq_A4kuml42epZjw$>

The preceding discussion can be seen here: https://lists.cabforum.org/pipermail/servercert-wg/2024-February/004174.html<https://urldefense.com/v3/__https:/lists.cabforum.org/pipermail/servercert-wg/2024-February/004174.html__;!!FJ-Y8qCqXTj2!YrHwwcHfyuqHVAYrEtAlYy-O2aF9clidDLNG0uMjeawge0zGMFczhMFec2t7GySPguko0-D7kXnvYnxq_A4kummFqObv_w$>

--- Motion Begins ---

This ballot modifies the "Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates" ("Baseline Requirements") based on Version 2.0.2

MODIFY the Baseline Requirements as specified in the following redline: https://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35...00ea6e24c474fd0ab6eecc25cb8eb733fffc60c3<https://urldefense.com/v3/__https:/github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35...00ea6e24c474fd0ab6eecc25cb8eb733fffc60c3__;!!FJ-Y8qCqXTj2!YrHwwcHfyuqHVAYrEtAlYy-O2aF9clidDLNG0uMjeawge0zGMFczhMFec2t7GySPguko0-D7kXnvYnxq_A4kumnCp3OdeA$>

--- Motion Ends ---

Discussion (at least 7 days):
- Start: 2024-02-02 22:30 UTC
- End: 2024-02-12 22:30 UTC

Vote for approval (7 days):
- Start: 2024-02-13 17:00 UTC
- End: 2024-02-20 17:00 UTC

Thanks,
Aaron
Any email and files/attachments transmitted with it are intended solely for the use of the individual or entity to whom they are addressed. If this message has been sent to you in error, you must not copy, distribute or disclose of the information it contains. Please notify Entrust immediately and delete the message from your system.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20240216/4627443c/attachment.html>