[Servercert-wg] Draft Ballot SC-071: Subscriber Agreement and Terms of Use Consolidation

Dustin Hollenback Dustin.Hollenback at microsoft.com
Fri Mar 1 08:19:35 UTC 2024

Hello all,

This draft ballot had been on hold while we discussed other concepts related to Subscriber and Subscriber Agreement. We decided to pause those additional changes and focus on the original intent of the ballot, which is to consolidate Subscriber Agreement and Terms of Use.

Please provide any input that you may have.

Thank you,



Purpose of Ballot SC-071
This ballot proposes updates to the Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates related to Subscriber Agreements and Terms of Use. It combines the requirements for both into only the Subscriber Agreement and clarifies the requirement language. It removes the requirement and reference to "Terms of Use".

•              This removes any ambiguity to ensure that there is no requirement that the Subscriber Agreement be legally enforceable when the CA and Subscriber are affiliated.
•              This updates definitions for “Subscriber” and “Subscriber Agreement” and removes the definition for “Terms of Use” as these separate concepts are creating unnecessary work for CAs and Subscribers without adding any value when separated.
•              While drafting this ballot, there were concerns raised related to “Applicant” and “Applicant Representative”. These definitions were intentionally not modified in this ballot as they will require more discussion after we implement the change to Subscriber Agreement and removal of Terms of Use.
•              As observed with other ballots in the past, minor administrative updates must be made to the proposed ballot text before publication such that the appropriate Version # and Change History are accurately represented (e.g., to indicate these changes will be represented in Version 2.0.3).
•              This ballot does not modify the “Guidelines for the Issuance and Management of Extended Validation Certificates”. More work will be made to that document after changes are finalized in this one.

The following motion has been proposed by Dustin Hollenback of Microsoft, and endorsed by Tadahiko Ito of SECOM and Ben Wilson of Mozilla.

— Motion Begins —

This ballot modifies the “Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates” (“Baseline Requirements”), based on Version 2.0.2.

MODIFY the Baseline Requirements as specified in the following Redline:

Here is a link to the GitHub redline:

— Motion Ends —

This ballot proposes a Final Maintenance Guideline. The procedure for approval of this ballot is as follows:

Discussion (7+ days)
•                     Start time: XXXX-XX-XX 22:00:00 UTC
•                     End time: XXXX-XX-XX 22:00:00 UTC

Vote for approval (7 days)
•                     Start time: XXXX-XX-XX 22:00:00 UTC
•                     End time: XXXX-XX-XX 22:00:00 UTC

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20240301/d86083ce/attachment.html>

More information about the Servercert-wg mailing list