Re: Recent Entrust Compliance Incidents

00 UTC with all > certificates being revoked by 2023-11-26 14:50 UTC, but I don't think > that's correct if that was the case. > > On Friday, May 10th, 2024 at 5:27 PM, 'Ben Wilson' via > dev-security-policy@mozilla.org wrote: > > Here are draft summaries of the additional hist

Re: Recent Entrust Compliance Incidents

gi?id=1802916 > https://bugzilla.mozilla.org/show_bug.cgi?id=1804753 > https://bugzilla.mozilla.org/show_bug.cgi?id=1867130 > > On Tue, May 7, 2024 at 7:59 AM 'Ben Wilson' via > dev-security-policy@mozilla.org > wrote: > > > > Dear Mozilla Community, > > > > Ove

Re: [Smcwg-public] Background for discussion of Legacy Profiles

Hi all, I am currently aligned with Wendy’s and Judith’s concerns expressed on the recent call about sunsetting the Legacy profile, but I look forward to discussing this further in Bergamo. The Legacy profile provides greater flexibility, and migrating to only the Multipurpose and Strict profiles

Re: [Servercert-wg] [Voting Begins] Ballot SC-74 - Clarify CP/CPS structure according to RFC 3647

Mozilla changes its vote to "no" on Ballot SC-74 with the understanding that additional edits are needed. On Sun, May 5, 2024 at 1:05 PM Ben Wilson wrote: > Mozilla votes "yes" on Ballot SC-74. > > On Sun, May 5, 2024 at 3:06 AM Dimitris Zacharopoulos (HARIC

Recent Entrust Compliance Incidents

t’s report presents a credible and effective path towards re-establishing trust in Entrust’s operation. Submission should be no later than June 7, 2024. We thank community members for their engagement on these issues and look forward to their feedback on Entrust’s report and proposed commitments.

Re: comment on Entrust_Issues wiki page

All, I hadn't announced this page yet, hoping to reference it in an email currently undergoing internal review. But thanks for your comment. I'll see about posting the email as soon as I can. Thanks, Ben On Mon, May 6, 2024 at 3:58 PM Mike Shaver wrote: > The page lists the following issue: > >

[cabfpub] Discussion Period Begins: Ballot FORUM-022: Establish Forum IPR Subcommittee

*Ballot FORUM-022: Establish Forum IPR Subcommittee* Proposed by Ben Wilson of Mozilla and endorsed by Roman Fischer of SwissSign and Clint Wilson of Apple. *Purpose of Ballot* The CA/Browser Forum’s Intellectual Property Rights (IPR) Policy and associated documentation were last revised

Re: [Servercert-wg] [Voting Begins] Ballot SC-74 - Clarify CP/CPS structure according to RFC 3647

Mozilla votes "yes" on Ballot SC-74. On Sun, May 5, 2024 at 3:06 AM Dimitris Zacharopoulos (HARICA) via Servercert-wg wrote: > HARICA votes "yes" to ballot SC-74. > > On 5/5/2024 11:24 π.μ., Dimitris Zacharopoulos (HARICA) via Servercert-wg > wrote: > > Voting begins for ballot SC-74. > SC-74 -

Re: [Infrastructure] Google doc for the CABF Handbook

I've updated this some more: https://docs.google.com/document/d/1GfisFGuFKFeY4kHr08zsQks1GwpRVyn2Gl6-eGSDmOw/edit On Thu, Mar 21, 2024 at 4:12 AM Inigo Barreira via Infrastructure < infrastructure@cabforum.org> wrote: > Hi all, > > > > See this link: >

Re: [Servercert-wg] [EXTERNAL] Re: Discussion Period Begins - Ballot SC-071: Subscriber Agreement and Terms of Use Consolidation

e Subscriber and CA > are parties to a legally valid and enforceable Subscriber Agreement that > satisfies these Requirements, or, if the CA and Subscriber are the same > entity or are Affiliated, the Applicant Representative has accepted the > Subscriber Agreement; > > >

Re: Public Discussion of Acquisition of e-commerce monitoring GmbH by AUSTRIA CARD-Plastikkarten und Ausweissysteme GmbH

hem? > > On Tuesday, March 5, 2024 at 11:18:13 AM UTC-5 Ben Wilson wrote: > >> All, >> March 1 was the scheduled end of public discussion on this matter. >> However, I have one unresolved question that I have presented to the CA >> operator and its audit firm regarding ACAB'c

Re: [Servercert-wg] Voting Period Begins - Ballot SC-073: Compromised and Weak Keys

Mozilla votes "yes". On Fri, Apr 26, 2024 at 2:00 AM Wayne Thayer via Servercert-wg < servercert-wg@cabforum.org> wrote: > Purpose of Ballot SC-073 > > This ballot proposes updates to the Baseline Requirements for the Issuance > and Management of Publicly-Trusted TLS Server Certificates related

Re: [Servercert-wg] [EXTERNAL] Re: Discussion Period Begins - Ballot SC-071: Subscriber Agreement and Terms of Use Consolidation

ps://github.com/cabforum/servercert/compare/41f01640748fa612386f8b1a3031cd1bff3d4f35...682488a832db5b6b4fcdd4cd7cbd86ae9541453e >> >> Aaron >> >> >> On Tue, Apr 23, 2024 at 4:25 AM Ben Wilson wrote: >> >>> Dimitris, Aaron, Wayne, and Others, >>> We are working on improvin

Re: [cabf_netsec] Voting Period Begins | Ballot NS-003: Restructure the NCSSRs

Mozilla votes "yes" on this ballot. On Tue, Apr 23, 2024, 5:59 PM Clint Wilson via Netsec wrote: > Ballot NS-003 is proposed by Clint Wilson of Apple and endorsed by Trevoli > Ponds-White of Amazon and David Kluge of Google Trust Services. > > *Purpose of Ballot* > > This ballot proposes a

Re: [Servercert-wg] [EXTERNAL] Re: Discussion Period Begins - Ballot SC-071: Subscriber Agreement and Terms of Use Consolidation

Dimitris, Aaron, Wayne, and Others, We are working on improving the language of the ballot. Here are a couple of versions for you to review and provide feedback on. https://github.com/cabforum/servercert/commit/d0d962e04bd81a71ebf71a7c45a015cbc75ac979

Re: [cabfpub] CABG: Follow-up actions to the creation of the new Definitions and Glossary Working Group

Mozilla wants to participate in the new Definitions and Glossary Working Group. On Mon, Apr 22, 2024 at 10:27 AM Dimitris Zacharopoulos (HARICA) via Public wrote: > > Dear Members, > > I have added the approved Charter of the Definitions and Glossary > Working Group (DGWG) to the main GitHub

Re: [cabfpub] Draft Charter for IPR Subcommittee

tomatically. We could renew its charter or duration if we find > something else useful but based on the current expectations it looks like > it will be dissolved if the proposed documents are approved. > > *Initial Chairs and Contacts* > > The proposer of the ballot adopting this

Re: [cabfpub] Draft Charter for IPR Subcommittee

Thanks, Dimitris. I will make edits to the proposal and get back to everyone. Ben On Fri, Apr 19, 2024 at 11:59 AM Dimitris Zacharopoulos (HARICA) via Public wrote: > Hi Ben, > > On 16/4/2024 7:48 μ.μ., Ben Wilson via Public wrote: > > All, > > As mentioned during the

Re: [cabfpub] Draft Charter for IPR Subcommittee

run the actuall ballot? > > > > > Voting shall be egalitarian: all Members shall vote together as a > single class > > Is the intent here to also allow Associated Members, Probationary Members > and Interested Parties to vote? > > Regards, > > Martijn > >

Re: [cabfpub] Draft Charter for IPR Subcommittee

All, I will put this in ballot format. I am looking for endorsers. Thanks, Ben On Tue, Apr 16, 2024 at 10:48 AM Ben Wilson wrote: > All, > > As mentioned during the Forum teleconference of April 11, 2024, here is a > draft charter for a Forum IPR Subcommittee. (This effort

[cabfpub] Draft Charter for IPR Subcommittee

. *Initial Chairs and Contacts* The proposer of the ballot adopting this Charter, Ben Wilson, will act as organizer of the FIS until the first teleconference is held for the FIS, at which time the FIS will elect a chair and vice-chair, either by vote or by acclamation of those present. The chair

Re: [cabfpub] Patent Advisory Group Formation

Just a reminder - If you or your IP counsel are interested in participating in the Patent Advisory Group, please let me know by close of business Friday. Thanks. Ben On Thu, Mar 28, 2024 at 11:03 AM Ben Wilson via Public wrote: > All, > In today's Forum call, I announced that we are coll

Re: [Smcwg-public] Ballot SMC06v2: Post implementation clarification and corrections

Mozilla votes "yes" on Ballot SMC-006v2. On Fri, Apr 5, 2024, 7:58 AM Kateryna Aleksieieva via Smcwg-public < smcwg-public@cabforum.org> wrote: > Certum votes "Yes" to Ballot SMC06v2 > > Kind regards, > > *Kateryna Aleksieieva* > -- > *Od:* Smcwg-public w imieniu >

Re: [cabfpub] Voting Period Begins | Ballot FORUM-021: Form Definitions and Glossary WG

Mozilla votes "yes" on Ballot FORUM-021. Thanks. On Thu, Apr 4, 2024 at 9:03 AM Clint Wilson via Public wrote: > *Ballot FORUM-021* > > Proposed by Clint Wilson of Apple and endorsed by Tim Hollebeek of > DigiCert and Tim Callan of Sectigo. > > *Purpose of Ballot* > > The CA/Browser Forum

[cabfpub] Patent Advisory Group Formation

All, In today's Forum call, I announced that we are collecting the names and email addresses of participants in the Patent Advisory Group through Friday, April 12, 2024, and then we'll get started. Thanks, Ben ___ Public mailing list Public@cabforum.org

Re: [Servercert-wg] Notice of review period: Ballot SC70: Clarify the use of DTPs for Domain Control Validation

All, I would like to help start up the patent advisory group. If you are interested in participating or having your IP counsel involved, please email me directly. Thanks, Ben On Tue, Mar 26, 2024 at 3:32 AM Inigo Barreira via Servercert-wg < servercert-wg@cabforum.org> wrote: > During the review

Approval of Firmaprofesional CA Root-A Web

All, Public discussion regarding inclusion of the Firmaprofesional CA ROOT-A WEB began on the CCADB Public List on January 31, 2024 ( https://groups.google.com/a/ccadb.org/g/public/c/3TXrvZC0isw/m/TMkE2rb_AAAJ) and concluded on March 13 (

Re: Public Discussion of Firmaprofesional CA Inclusion Request

:54 AM UTC-6 Ben Wilson wrote: > All, > This is just a reminder that the public discussion period ends this > Wednesday, March 13. > Thanks, > Ben > > On Wednesday, January 31, 2024 at 3:12:59 PM UTC-7 Ben Wilson wrote: > >> All, >> >> T

Re: [Infrastructure] Google doc for the CABF Handbook

I took a first crack at it this afternoon. On Thu, Mar 21, 2024 at 4:12 AM Inigo Barreira via Infrastructure < infrastructure@cabforum.org> wrote: > Hi all, > > > > See this link: > https://docs.google.com/document/d/1GfisFGuFKFeY4kHr08zsQks1GwpRVyn2Gl6-eGSDmOw/edit?usp=sharing > > > > It´s a

Re: [cabfpub] Discussion Period Begins | Ballot FORUM-021: Form Definitions and Glossary WG

Looks good to me. Ben On Thu, Mar 21, 2024 at 9:00 AM Clint Wilson via Public wrote: > *Ballot FORUM-021* > > Proposed by Clint Wilson of Apple and endorsed by Tim Hollebeek of > DigiCert and Tim Callan of Sectigo. > > *Purpose of Ballot* > > The CA/Browser Forum publishes Final Guidelines

Re: [Servercert-wg] Ballot to introduce linting in the TLS BRs

Hi Dimitris, You can add me. Thanks, Ben On Tue, Mar 19, 2024 at 9:01 AM Dimitris Zacharopoulos (HARICA) via Servercert-wg wrote: > > > On 19/3/2024 5:27 π.μ., Corey Bonnell wrote: > > Hi Dimitris, > > I’d be happy to endorse and help flesh out the language. > > > Thank you Corey, I added your

Re: [Servercert-wg] Discussion Period Begins - Ballot SC-067 V1: "Require domain validation and CAA checks to be performed from multiple Network Perspectives”

, Tadahiko, and I decided to go with SC-071 (the next unallocated one) for our ballot. Ben On Mon, Mar 18, 2024 at 11:19 PM Backman, Antti via Servercert-wg < servercert-wg@cabforum.org> wrote: > Hi Chris > > > > Could there be a numbering clash with this ballot and the one bei

Re: Public Discussion of Firmaprofesional CA Inclusion Request

All, This is just a reminder that the public discussion period ends this Wednesday, March 13. Thanks, Ben On Wednesday, January 31, 2024 at 3:12:59 PM UTC-7 Ben Wilson wrote: > All, > > This email commences a six-week public discussion of Firmaprofesional’s > reques

Re: Public Discussion of Acquisition of e-commerce monitoring GmbH by AUSTRIA CARD-Plastikkarten und Ausweissysteme GmbH

lschaft” (large corporation) and therefore >> needs to comply with all regulations of the Austrian GmbHG (limited >> liabilities company Act) and UGB (Commercial Code). >> >> e-commerce monitoring GmbH was taken over as a fully functional and >> independent

Re: [Servercert-wg] [Voting Period Begins]: SC65: Convert EVGs into RFC 3647 format v2

n published. > > This ballot is proposed by Iñigo Barreira (Sectigo) and endorsed by Pedro > Fuentes (OISTE) and Ben Wilson (Mozilla). > > --- Motion Begins --- > > This ballot modifies the “Baseline Requirements for the Issuance and > Management of Publicly

Re: [Servercert-wg] [Voting Period Begins]: SC-69v3 Clarify router and firewall logging requirements

s part of the > "Firewall and router activities" logging requirement in the Baseline > Requirements. > > This ballot is proposed by Martijn Katerbarg (Sectigo) and endorsed by > Daniel Jeffery (Fastly) and Ben Wilson (Mozilla). > > --- Motion Begins --- > > Th

[kid3] [Bug 481394] Ability to sort search results in the import screen

https://bugs.kde.org/show_bug.cgi?id=481394 --- Comment #4 from Ben Wilson-Hill --- I can live with that my friend - sounds like it would involve a fairly significant rewrite. I wish it was something I could help you with. Thanks for the tip with the URL search though. I can't get it to work

[kid3] [Bug 481394] Ability to sort search results in the import screen

https://bugs.kde.org/show_bug.cgi?id=481394 --- Comment #2 from Ben Wilson-Hill --- (In reply to Urs Fleisch from comment #1) > The import results are sorted in exactly the order of the tracks. This order > is fixed. The import results can be reordered by using the "Match with:

[kid3] [Bug 481394] New: Ability to sort search results in the import screen

https://bugs.kde.org/show_bug.cgi?id=481394 Bug ID: 481394 Summary: Ability to sort search results in the import screen Classification: Applications Product: kid3 Version: 3.9.x Platform: Arch Linux OS: Linux

Re: [Servercert-wg] [Voting Period Begins] SC-070: Clarify the use of DTPs for Domain Control Validation

Mozilla votes "yes" to Ballot SC-070. On Tue, Feb 13, 2024 at 9:56 AM Aaron Gable via Servercert-wg < servercert-wg@cabforum.org> wrote: > This new voting period is to fix a typo in the End timestamp of the voting > period for the previous version of this ballot. The contents of the motion >

Re: [Servercert-wg] Seeking endorsers: SC-065: Convert EVGs into RFC 3647 format pre-ballot

I'm willing to endorse. On Thu, Feb 8, 2024 at 10:52 AM Inigo Barreira via Servercert-wg < servercert-wg@cabforum.org> wrote: > Hi, > > > > As mentioned in the past SCWG call, I´m looking for 2 endorsers for this > ballot. > > > > Regards > > > > *De:* Servercert-wg *En nombre de *Inigo >

Re: Public Discussion of Acquisition of e-commerce monitoring GmbH by AUSTRIA CARD-Plastikkarten und Ausweissysteme GmbH

If incidents are sufficiently recent or still have relevance, then we could update the Bugzilla bugs "Summaries" by replacing the name of the previous operator with the name of the new entity when there is a name change or CA operator replacement.) Ben > > Thanks, > Aar

Re: Public Discussion of Acquisition of e-commerce monitoring GmbH by AUSTRIA CARD-Plastikkarten und Ausweissysteme GmbH

the Mozilla Root Store Policy >> >> ·Ownership and governance >> >> ·Investment and budget for CA operations, risk management, and >> compliance >> >> ·Community engagement and involvement in industry groups >> >> ·E

Public Discussion of Acquisition of e-commerce monitoring GmbH by AUSTRIA CARD-Plastikkarten und Ausweissysteme GmbH

t in industry groups ·Employee expertise and continuity ·Operational design and ongoing GRC management ·Auditors and auditing Thanks, Ben Wilson Mozilla Root Store Program -- You received this message because you are subscribed to the Google Groups "dev-security-

Public Discussion of Firmaprofesional CA Inclusion Request

All, This email commences a six-week public discussion of Firmaprofesional’s request to include the “FIRMAPROFESIONAL CA ROOT-A WEB” as a publicly trusted root certificate in one or more CCADB Root Store Member’s program. This discussion period is scheduled to close on March 13, 2024. The

Re: [Infrastructure] New cabforum.org website

I noticed there may be some YouTube videos on using Hugo with GitHub that might be helpful, too. If I see a good one, I'll let you know. Ben On Wed, Jan 31, 2024 at 9:09 AM Bruce Morton via Infrastructure < infrastructure@cabforum.org> wrote: > Hi Paul, > > > > The site looks great to me. Thanks

Re: [Infrastructure] New cabforum.org website

Hi, I'll take a look at the instructions later today, but as a general matter, I think it is fine to switch the website over sooner rather than later. Ben On Wed, Jan 31, 2024 at 4:44 AM Paul van Brouwershaven via Infrastructure < infrastructure@cabforum.org> wrote: > If everyone is ok with the

Re: [Servercert-wg] Voting Begins for Ballot SC-68: Allow VATEL and VATXI for organizationIdentifier

> 2006/112/EC that requires the prefix "XI" for the identification of taxable > persons in Northern Ireland. > > This pull request <https://github.com/cabforum/servercert/pull/473> > proposes updates to the EV Guidelines to allow those additional prefixes. > It also fi

Re: CCADB Self-Assessment - Version 1.3 Released

Assessment v 1.3? Could not find it from cabforum.org? > > BR, Antti > > keskiviikko 17. tammikuuta 2024 klo 20.39.38 UTC+2 Ben Wilson kirjoitti: > >> Greetings all, >> >> >> The CCADB Steering Committee has updated the CCADB Self-Assessment to Versio

CCADB Self-Assessment - Version 1.3 Released

e Self-Assessment (now reflects MRSP Version 2.9 requirements) - Chrome Root Program Policy v. 1.5 Self-Assessment (from Version 1.4) - CCADB policy v 1.3 Self-Assessment (from Version 1.2.1) - TLS BRs v 2.0.2 (from Version 2.0.0) Thank you, Ben Wilson, on behalf of the CC

Re: [Smcwg-public] Voting period begins for SMC-05: Adoption of CAA for S/MIME

changes to the S/MIME Baseline Requirements to > introduce the use of Certification Authority Authorization (CAA) Processing > for Email Addresses as defined in RFC 9495. It also includes minor > typographic corrections. > > > > The following motion has been proposed by Corey Bonnell of Dig

Re: Seeking the public discussion of Algerian Root CA

ozilla.org/CA. Sincerely yours, Ben Wilson On Wed, Jan 10, 2024 at 8:29 AM Peter Mate Erdosi wrote: > Hello all, > > thank you for being here. > > I seek the details of the public discussion of Algerian Root CA inclusion. > > I found only this: https://bugzilla.mozi

Re: known bad certs blocklist

Hello Jan, This OneCRL list might be what you are looking for - https://crt.sh/mozilla-onecrl. Ben On Tue, Jan 9, 2024 at 9:17 AM 'Jan Schaumann' via dev-security-policy@mozilla.org wrote: > Hello, > > Is there a community-shared blocklist of known bad > certs (keys)? > > Chrome has > >

Re: Improvements to Vulnerability Disclosure wiki page

s that were missing in > the initial communication. > > > > Kind regards > Roman > > > > *From:* dev-security-policy@mozilla.org *On > Behalf Of *Ben Wilson > *Sent:* Mittwoch, 22. November 2023 20:35 > *To:* dev-secur...@mozilla.org > *Subject:* Re: Improvemen

Re: [cabfpub] Voting Period begins: Ballot FORUM-020 v2 - Amend Code Signing Certificate Working Group Charter

Mozilla votes "Yes" on Ballot FORUM-020 v.2. On Thu, Jan 4, 2024 at 1:02 PM Martijn Katerbarg via Public < public@cabforum.org> wrote: > *Ballot FORUM-020 **v2 - Amend Code Signing Certificate Working Group > Charter* > > > > *Purpose of Ballot* > > This ballot proposes to amend the Code Signing

Re: [Infrastructure] cabforum.org website with more automation

This looks very good and very promising. Thanks, Paul. Ben On Thu, Jan 4, 2024 at 1:29 PM Paul van Brouwershaven via Infrastructure < infrastructure@cabforum.org> wrote: > I started to convert the cabforum.org website to Hugo to give us more > automation, you can see a preview here: >

Re: [Servercert-wg] Section 7.1.5 as required by RFC 3647 is no longer in the TLS BRs

I think this is listed as an issue in GitHub - https://github.com/cabforum/servercert/issues/444. On Thu, Jan 4, 2024 at 4:54 AM Dimitris Zacharopoulos (HARICA) via Servercert-wg wrote: > Dear Members, > > While taking another pass at reviewing the new certificate profiles > introduced in

Deutsche Telekom Security's Root Inclusion Request

All, Public discussion began on the CCADB Public List on Nov. 1, 2023 ( https://groups.google.com/a/ccadb.org/g/public/c/yiJ-bkv-Ftg/m/JsbbxpZJBAAJ) and concluded on Dec. 13 ( https://groups.google.com/a/ccadb.org/g/public/c/yiJ-bkv-Ftg/m/lxwjZDvhAAAJ) regarding Deutsche Telekom Security's

Re: S/MIME BR Transition Wiki Page

CA *must be audited according to the S/MIME BRs if the email trust bit is to be enabled *.* *A* , and the CA operator’s CP or CPS must state that they follow the current version of the S/MIME BRs. Are there any comments or suggestions? Thanks, Ben On Wed, Jul 19, 2023 at 11:01 AM Ben Wilson

D-Trust Inclusion Request (Email Trust Bit)

All, Public discussion concluded last Friday, Dec. 15, on the CCADB Public List, for D-Trust's root inclusion request. https://groups.google.com/a/ccadb.org/g/public/c/EPVczE_6oCc/m/jsZ0CsgdAAAJ This is notice that I am recommending approval of D-Trust's request to include the following root CA

Re: Public Discussion of D-Trust CA Inclusion Request

ently managed Root Store community forums (e.g. MDSP). Thanks, Ben Wilson On behalf of the CCADB Steering Committee [1] https://groups.google.com/a/ccadb.org/g/public/c/EPVczE_6oCc/m/s90nO9-EBAAJ On Fri, Dec 8, 2023 at 10:52 AM Ben Wilson wrote: > Greetings, > > This is a reminder

Re: CCADB Update: Upcoming Addition of Network Security and S/MIME Audits in the CCADB

Greetings, The previously mentioned updates to the CCADB have been made. Please let us know if you have any questions. Thanks, Ben On Wed, Dec 13, 2023 at 3:29 PM 'Hannah Sokol' via CCADB Public < public@ccadb.org> wrote: > All, > > > > On Thursday, December 14, 2023, we will be updating the

[Infrastructure] Draft Minutes of Meeting 13-Dec-2023

Here are the draft minutes from today's call: *Minutes of Infrastructure Committee – 13-December-2023* *Present:* Ben Wilson, Dean Coclin, Iñigo Barreira, Paul Van Brouwershaven, Wayne Thayer, and Roman Fischer Ben read the Note Well. The major topic for discussion was the creation

Re: [Infrastructure] Update of "old" documents

dd someplace in the tool. > Dean > > > > *Dean Coclin * > > Sr. Director Business Development > > M 1.781.789.8686 > > > > > > > > > > *From:* Infrastructure *On Behalf > Of *Inigo Barreira via Infrastructure > *Sent:* Tuesday,

Re: Public Discussion of D-Trust CA Inclusion Request

Greetings, This is a reminder that the public discussion period on the inclusion application of D-Trust will close next Friday, December 15, 2023. Thank you, Ben Wilson, on behalf of the CCADB Steering Committee On Mon, Nov 6, 2023 at 10:02 AM Ben Wilson wrote: > All, > > Regard

Re: [Smcwg-public] CAA for S/MIME

It would be great if we could coordinate with a SCWG ballot that requires that CAA be put in section 3.2.2.8. However, as I said on the recent call, there might be a CA or two that has already populated section 3.2.2.8 of their CP/CPS with something else. On Thu, Dec 7, 2023 at 8:59 AM Stephen

Re: [Servercert-wg] SC-065: Convert EVGs into RFC 3647 format pre-ballot

All, See https://github.com/BenWilson-Mozilla/pkipolicy/commit/1a94642cb95017cf382e4e93811db16a2342a806. This proposed change was to clarify that the outline in section 6 of RFC 3647 is what is intended to be followed in CPs and CPSes, and not some other outline found in RFC 3647. Unfortunately,

Re: [cabfpub] Ballot FORUM-019 v.2 - Amend Server Certificate Working Group Charter - VOTING PERIOD

Mozilla votes "yes" on Ballot FORUM-019 v.2. On Mon, Nov 27, 2023 at 8:44 AM Ben Wilson via Public wrote: > The voting period for Ballot FORUM-019 v.2 starts today. Votes must be > cast on the Forum public list in accordance with the Forum's Bylaws. > Voting will conclud

Re: [Infrastructure] WordPress Instructions

or a Physical (F2F) Meeting. > > > Thanks, > Dimitris. > > On 8/11/2023 11:57 μ.μ., Ben Wilson via Infrastructure wrote: > > Today I started to edit the WordPress instructions for the website and > > bring them up to date. (They're quite out-of-date.) I have provided a &g

[cabfpub] Ballot FORUM-019 v.2 - Amend Server Certificate Working Group Charter - VOTING PERIOD

voting members. Additionally, section numbering has been added, the outdated "Root Certificate Issuer" voting category has been removed, and provisions regarding voting percentages and quorum have been clarified. The following motion has been proposed by Ben Wilson of Mozilla an

Re: Improvements to Vulnerability Disclosure wiki page

zilla.org/CA/Vulnerability_Disclosure#Markdown_Template> that can be used in Bugzilla. Ben On Wed, Sep 27, 2023 at 11:47 AM Ben Wilson wrote: > All, > As mentioned in a previous email, I am soliciting feedback regarding the > Vulnerability > Disclosure wiki page > &

[Infrastructure] WordPress Instructions

Today I started to edit the WordPress instructions for the website and bring them up to date. (They're quite out-of-date.) I have provided a link to them on the wiki - https://wiki.cabforum.org/books/infrastructure/page/wordpress-instructions. If you'd like to help me edit them and need "edit"

Re: Public Discussion of D-Trust CA Inclusion Request

s in revoking misissued certificate <https://bugzilla.mozilla.org/show_bug.cgi?id=1862082> OPEN [leaf-revocation-delay] Ben On Fri, Nov 3, 2023 at 9:39 AM Ben Wilson wrote: > All, > > This email commences a six-week public discussion of D-Trust’s request to > in

Public Discussion of D-Trust CA Inclusion Request

All, This email commences a six-week public discussion of D-Trust’s request to include the following CA certificates as publicly trusted root certificates in one or more CCADB Root Store Member’s program. This discussion period is scheduled to close on December 15, 2023. The purpose of this

Re: [Smcwg-public] VOTE FOR APPROVAL Ballot SMC04: Addition of ETSI TS 119 411-6 to audit standards

Mozilla votes "Yes" on Ballot SMC 004 (Addition of ETSI TS 119 411-6). On Wed, Nov 1, 2023 at 11:07 AM Stephen Davidson via Smcwg-public < smcwg-public@cabforum.org> wrote: > Hello: > > > > The voting period for Ballot SMC04 has started. Votes must be cast on the > SMCWG public list and in

Re: [cabfpub] Ballot FORUM-019 - Amend Server Certificate Working Group Charter - Discussion Period

Thanks, Tobias. I'll take a look at your suggestions and see if I can work in a few revisions, and then we can restart the discussion period. Ben On Thu, Oct 26, 2023 at 12:30 PM Tobias S. Josefowitz wrote: > Hi Ben, > > On Mon, 23 Oct 2023, Ben Wilson wrote: > > > *Ballot

Re: [Servercert-wg] Draft Ballot SC-067: Applicant, Subscriber and Subscriber Agreements - Feedback requested

s for the > Issuance and Management of Extended Validation Certificates”. More work > will be made to that document after changes are finalized in this one. > > > > The following motion has been proposed by Dustin Hollenback of Microsoft, > and endorsed by Tadahiko Ito of SE

Re: [cabfpub] Forum Ballot to Amend Server Certificate WG Charter

on the request of any Member that challenges the Applicant's > adherence to all of the requirements of section 3(a) or 3(b), by a Ballot > among the Members."* > > I read the rest of the proposed changes and they look good. If you are ok > with the change above, HARICA would be happy to

Updated Incident Reporting Requirements

All, The framework for reporting compliance incidents has been updated on the CCADB website. See https://www.ccadb.org/cas/incident-report. Note that the expected contents in Sections 1 through 7 of an incident report have changed. Effective immediately, incident reports should use the markdown

Re: [cabfpub] Forum Ballot to Amend Server Certificate WG Charter

All, I am looking for at least one more endorser for this ballot. Thanks, Ben On Thu, Oct 12, 2023 at 4:23 PM Ben Wilson wrote: > All, > > I am planning to introduce a Forum ballot to amend the Server Certificate > Working Group Charter. > > At a high level, here are so

Re: CCADB Update: Audit Team Qualifications

Audit Team Qualifications. Until then, please refer to each separate root store policy for its audit team qualification requirements. Thank you - Ben, on behalf of the CCADB Steering Committee On Sun, Oct 15, 2023 at 11:26 AM Ben Wilson wrote: > All, > > Tomorrow, Monday, October 16, 2023, we

CCADB Update: Audit Team Qualifications

All, Tomorrow, Monday, October 16, 2023, we will be updating the AUDITS tab of “Add/Update Root Request” Cases in the CCADB to provide upload functionality for Audit Team Qualifications documents (mainly for WebTrust audits, as ETSI audit teams already include this information directly in audit

Intent to Approve Commscope's CA Inclusion Request

All, We recently concluded a 6-week public discussion on the CCADB list of the request for inclusion of root CA certificates by Commscope. See https://groups.google.com/a/ccadb.org/g/public/c/HVwBXDw6GnU/m/q2WRYe_TBQAJ. In accordance with Step 7 of the Mozilla inclusion process,

[cabfpub] Forum Ballot to Amend Server Certificate WG Charter

All, I am planning to introduce a Forum ballot to amend the Server Certificate Working Group Charter. At a high level, here are some of the proposed changes: - Section numbering added - "Root Certificate Issuer" voting category removed - Membership requirements for Certificate

Re: Public Discussion of CommScope CA Inclusion Request

All, On August 28, 2023, we began a six-week, public discussion[1] on the following root CA certificates issued by Commscope: 1. CommScope Public Trust RSA Root-01: Use cases served/EKUs: - Server Authentication (TLS) 1.3.6.1.5.5.7.3.1 - Client Authentication

Re: [Smcwg-public] [External Sender] Re: Re: [EXTERNAL]-Re: Fields for S/MIME CSRs

Software Engineer with Cryptography SME > > www.globalsign.co.uk|www.globalsign.eu > > > > > > *From: *Smcwg-public > on behalf of Adriano Santoni via > Smcwg-public > *Date: *Monday, 2 October 2023 at 07:57 > *To: *smcwg-public@cabforum.org > >

Re: Public Discussion of CommScope CA Inclusion Request

This is just a reminder that this Public Discussion is scheduled to close next Tuesday, October 10, 2023. On Wednesday, September 6, 2023 at 4:39:43 PM UTC-4 So, Nicol wrote: > On Fri, 01 Sep 2023 08:19:04 -0700, Antonios Chariton wrote: > > > > > Will you be a TLS Client Certificate-heavy

Re: [Smcwg-public] [EXTERNAL]-Re: Fields for S/MIME CSRs

is better to rely on the verified information and not on > whatever the CSR had. > > Le 29 sept. 2023 à 21:21, Ben Wilson a écrit : > >  > Shouldn't at least the email address be included, and verified, of course, > by the CA? > > On Fri, Sep 29, 2023, 11:35 AM Pedro FUENTES

Re: [Smcwg-public] [EXTERNAL]-Re: Fields for S/MIME CSRs

y of nuance we can discuss as well, but generally speaking I > believe it’s bad practice to rely on fields in the CSR. > > Cheers, > -Clint > > On Sep 29, 2023, at 8:27 AM, Ben Wilson via Smcwg-public < > smcwg-public@cabforum.org> wrote: > > All, > I'm interested i

Re: [Servercert-wg] Draft Ballot SC-0XX: Subscriber Agreement and Terms of Use Consolidation

> Agreement” and removes the definition for “Terms of Use” as these separate > concepts are creating unnecessary work for CAs and Subscribers without > adding any value when separated. > > • As observed with other ballots in the past, minor > administrati

[Smcwg-public] Fields for S/MIME CSRs

All, I'm interested in gathering information from Certificate Issuers about the kind of information that they would like to collect/extract from the CSRs they receive from S/MIME certificate applicants. This information could be used to refine a system to generate CSRs that result in certificates

Re: [Servercert-wg] Proposed Revision of SCWG Charter

s, or whether to take updates from their > upstream trust store, on an ongoing basis. > > Aaron > > On Mon, Sep 25, 2023 at 4:35 PM Ben Wilson wrote: > >> Thanks, Martijn and Aaron, >> >> Aaron, I don't think I can add a CT-support requirement for Certificate &g

Improvements to Vulnerability Disclosure wiki page

All, As mentioned in a previous email, I am soliciting feedback regarding the Vulnerability Disclosure wiki page . If you have any specific suggestions that we can use to enhance clarity or to make the page more complete, please don't hesitate

Re: MRSP 2.9: Survey Results - August 2023 CA Communication and Survey

of these terms accordingly. Thanks, Ben and Kathleen On Mon, Sep 18, 2023 at 10:01 AM Ben Wilson wrote: > All, > The period for submitting survey responses has now concluded, and the > results are in the sheet linked below (in my previous email). > I will now summarize the com

Re: [Servercert-wg] Proposed Revision of SCWG Charter

pan, could be hard if there’s a case of bad timing. >> >> >> >> Additionally, I’d like to request the addition of an additional criteria >> (although it’s related to the “publish how it decides to add or remove a CA >> certificate from its list.” item. I’d like

Re: [elixir-core:11542] Support using brackets to access an index of a list

> Personally, I don't see the harm in supporting it. If someone's going to abuse it, they'll abuse Enum.at() The harm isn't for people who doing it intentionally, the harm is for people who are doing it unintentionally. Index based array access is so common in certain languages that it's one

Re: MRSP 2.9: Survey Results - August 2023 CA Communication and Survey

All, The period for submitting survey responses has now concluded, and the results are in the sheet linked below (in my previous email). I will now summarize the comments and post them here. Thanks, Ben On Fri, Sep 8, 2023 at 2:12 PM Ben Wilson wrote: > All, > > While survey

Blog Post About Mozilla Root Store Policy Version 2.9

All, Recently, I posted on the Mozilla Security Blog a brief overview of updates to the Mozilla Root Store Policy (v 2.9). See https://blog.mozilla.org/security/2023/09/13/version-2-9-of-the-mozilla-root-store-policy/ Ben -- You received this message because you are subscribed to the Google

Mozilla Blog Post About Root Store Policy Version 2.9

All, Recently, I posted on the Mozilla Security Blog a brief overview of updates to the Mozilla Root Store Policy (v 2.9). See https://blog.mozilla.org/security/2023/09/13/version-2-9-of-the-mozilla-root-store-policy/ Ben -- You received this message because you are subscribed to the Google

[cabf_validation] Draft Minutes of Validation Subcommittee - Sept. 7, 2023

*Validation Subcommittee Meeting of September 7, 2023* *Notewell: * Read by Corey Bonnell *Attendance: * Aaron Gable - ISRG, Aaron Poulsen - Amazon Trust Services, Andrea Holland - VikingCloud, Aneta Wojtczak - Microsoft, Antonis Eleftheriadis - HARICA, Ben Wilson - Mozilla, Bhat Abhishek

  1   2   3   4   5   6   7   8   9   10   >