Re: [cabfpub] Ballot 190 - Recording BR Version Number

2017-07-20 Thread Wayne Thayer via Public
given CAs are already required to annually review their CP/CPS [WT] I find it difficult to believe that it would be considered acceptable for a CA to wait [up to] a year to update the version number of a validation method after a material improvement is made to that method. do you believe

Re: [cabfpub] Ballot 190 - Recording BR Version Number

2017-07-20 Thread Ryan Sleevi via Public
Kirk, Given that the Forum already publishes its Ballots - and keeps track of changes within the documents - and given CAs are already required to annually review their CP/CPS (in addition to following the current published version), do you believe Gerv's response is not a perfectly reasonable

Re: [cabfpub] Ballot 190 - Recording BR Version Number

2017-07-20 Thread Kirk Hall via Public
Wayne, I think your idea has merit in this special situation – and it’s something we can probably accomplish without a ballot. Statute books commonly have notations at the end of each statute showing all the times the statute was amended – often it will show year and public law number (in

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Jacob Hoffman-Andrews via Public
If people are curious, as I was, about why RFC 5890 restricts use of Reserved LDH Labels, here is what I believe to be the relevant paragraph: https://tools.ietf.org/html/rfc5890#page-8 > Labels within the class of R-LDH labels that are not prefixed with > "xn--" are also not valid IDNA labels.

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Rob Stradling via Public
Comodo votes Yes. On 19/07/17 23:39, Peter Bowen via Public wrote: Amazon votes Yes. On Jul 19, 2017, at 3:34 PM, Ben Wilson via Public > wrote: DigiCert votes “Yes” *From:*Public [mailto:public-boun...@cabforum.org]*On Behalf Of*Ben Wilson

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Peter Bowen via Public
> On Jul 20, 2017, at 11:02 AM, Erwann Abalea > wrote: > > >> Le 20 juil. 2017 à 16:52, Ryan Sleevi a écrit : >> >> On Thu, Jul 20, 2017 at 10:16 AM, Erwann Abalea >> wrote: >>> Bonjour, >>> >>> Looking back in

[cabfpub] Browser UI Future - Chrome

2017-07-20 Thread Ryan Sleevi via Public
On today's call, some CA members expressed unfamiliarity with the public goals of the Chrome team regarding the future of browser UI related to TLS. While these have been shared in past meetings, I realize there's no single, comprehensive post that contains the past discussions, so hopefully this

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Erwann Abalea via Public
> Le 20 juil. 2017 à 16:52, Ryan Sleevi a écrit : > > On Thu, Jul 20, 2017 at 10:16 AM, Erwann Abalea > wrote: >> Bonjour, >> >> Looking back in time on the list for a reason to allow for underscore in >> SAN:dNSName, I found basically 2

[cabfpub] CABF Plenary Teleconference Calls

2017-07-20 Thread Ben Wilson via Public
All, If it's alright, and for the benefit of members located in Asia, I'm going to start posting the WebEx recordings of CAB Forum plenary meeting calls to the wiki. Access to the recording of today's call is available here: https://cabforum.org/wiki/Teleconference%20recordings Ben

Re: [cabfpub] [Ext] .well-known and re-directs

2017-07-20 Thread Jeremy Rowley via Public
The BR language states the well-known directory must be “on the Authorization Domain Name”. Whether a re-direct is “on the Authorization Domain Name” is questionable. If following redirects is permitted, the language should be updated accordingly. Jeremy From: Jacob

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Erwann Abalea via Public
Bonjour, Looking back in time on the list for a reason to allow for underscore in SAN:dNSName, I found basically 2 potential reasons: - allow things such as « _sip._tls.xxx.com » - provide certificates for names that are not internet routable, such as «

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Peter Bowen via Public
> On Jul 20, 2017, at 1:23 AM, Gervase Markham via Public > wrote: > > On 19/07/17 23:34, Ben Wilson via Public wrote: >> DigiCert votes “Yes” > > Is the text of this motion still exactly as was posted on the 12th July, > or have there been any updates to it during the

Re: [cabfpub] What is 'misuse'?

2017-07-20 Thread Gervase Markham via Public
On 17/07/17 20:48, Rich Smith via Public wrote: > Ryan, First of all, thank you for taking the time to post a reply. I > did the Mozilla discussion when it was happening, and I've reviewed > it again. I may be missing something, but the gist of it seems to be > that misuse is pretty much

Re: [cabfpub] Ballot 190 - Recording BR Version Number

2017-07-20 Thread Gervase Markham via Public
On 19/07/17 02:32, Wayne Thayer via Public wrote: > /The CA SHALL maintain a record of which domain validation method, > including relevant BR version number, they used to validate every domain. / > > While I understand the logic behind this, I’m concerned about the > “relevant BR version

Re: [cabfpub] Ballot 202 - Underscore and Wildcard Characters

2017-07-20 Thread Gervase Markham via Public
On 19/07/17 23:34, Ben Wilson via Public wrote: > DigiCert votes “Yes” Is the text of this motion still exactly as was posted on the 12th July, or have there been any updates to it during the discussion period? Gerv ___ Public mailing list