[Servercert-wg] [Voting Period Begins] SC-070: Clarify the use of DTPs for Domain Control Validation

Inigo Barreira Inigo.Barreira at sectigo.com
Wed Feb 21 12:27:52 UTC 2024


Vijay,

 

Scott Rea already voted. This vote won´t be count.

 

Regards

 

De: Servercert-wg <servercert-wg-bounces at cabforum.org> En nombre de Vijay
Kumar M via Servercert-wg
Enviado el: lunes, 19 de febrero de 2024 3:33
Para: Aaron Gable <aaron at letsencrypt.org>; CA/B Forum Server Certificate WG
Public Discussion List <servercert-wg at cabforum.org>
Asunto: Re: [Servercert-wg] [Voting Period Begins] SC-070: Clarify the use
of DTPs for Domain Control Validation

 

CAUTION: This email originated from outside of the organization. Do not
click links or open attachments unless you recognize the sender and know the
content is safe.

 

eMudhra votes YES to ballot SC-070

 

Regards,

Vijay

 

From: Servercert-wg <servercert-wg-bounces at cabforum.org
<mailto:servercert-wg-bounces at cabforum.org> > On Behalf Of Aaron Gable via
Servercert-wg
Sent: 13 February 2024 22:27
To: CA/B Forum Server Certificate WG Public Discussion List
<servercert-wg at cabforum.org <mailto:servercert-wg at cabforum.org> >
Subject: [Servercert-wg] [Voting Period Begins] SC-070: Clarify the use of
DTPs for Domain Control Validation

 

	
CAUTION: This email is originated from outside of the organization. Do not
open the links or the attachments unless you recognize the sender and know
the content is safe. 

 

This new voting period is to fix a typo in the End timestamp of the voting
period for the previous version of this ballot. The contents of the motion
itself are identical. My apologies for the confusion.

 

This ballot aims to clarify the existing language around the use of
delegated third-parties during domain and IP address control validation. It
leaves the existing language in place, and adds specifics for the cases of
DNS queries, WHOIS lookups, and contact with the Domain Name Registrat or IP
Address Registration Authority. 

 

Additionally, it places these same restrictions on CAA checking, with an
effective date of 2024-05-15.

 

This ballot is proposed by Aaron Gable (ISRG / Let's Encrypt) and endorsed
by Mads Henriksveen (Buypass) and Dimitris Zacharopoulos (HARICA). You can
view and comment on the github pull request representing this ballot here:
https://github.com/cabforum/servercert/puhttps://lists.cabforum.org/pipermai
l/servercert-wg/2024-February/004174.htmlll/475
<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.co
m%2Fcabforum%2Fservercert%2Fpull%2F475&data=05%7C02%7Cinigo.barreira%40secti
go.com%7Cbd177f0fabb44786405208dc30f31b64%7C0e9c48946caa465d96604b6968b49fb7
%7C0%7C0%7C638439067922257461%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLC
JQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=SyUfmy52fQqm
bIAn%2FPwu99HeNWpA%2BM5DBgIT6oXu%2FcA%3D&reserved=0> 

 

The preceding discussion can be seen here:
https://lists.cabforum.org/pipermail/servercert-wg/2024-February/004174.html
<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cab
forum.org%2Fpipermail%2Fservercert-wg%2F2024-February%2F004174.html&data=05%
7C02%7Cinigo.barreira%40sectigo.com%7Cbd177f0fabb44786405208dc30f31b64%7C0e9
c48946caa465d96604b6968b49fb7%7C0%7C0%7C638439067922268336%7CUnknown%7CTWFpb
GZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C
0%7C%7C%7C&sdata=M9mLkHAzt3p00YPSVccw%2B0oncwY%2B3kpcO%2FBRUjAMMJc%3D&reserv
ed=0> 

 

--- Motion Begins ---

 

This ballot modifies the "Baseline Requirements for the Issuance and
Management of Publicly-Trusted Certificates" ("Baseline Requirements") based
on Version 2.0.2

 

MODIFY the Baseline Requirements as specified in the following redline:
https://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031c
d1bff3d4f35...00ea6e24c474fd0ab6eecc25cb8eb733fffc60c3

 

--- Motion Ends ---

 

Discussion (at least 7 days):

- Start: 2024-02-02 22:30 UTC

- End: 2024-02-12 22:30 UTC

 

Vote for approval (7 days):

- Start: 2024-02-13 17:00 UTC

- End: 2024-02-20 17:00 UTC

 

Thanks,

Aaron

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20240221/f69a29e1/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6630 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20240221/f69a29e1/attachment-0001.p7s>


More information about the Servercert-wg mailing list