Re: [cabfpub] Voting begins: Ballot 218 version 2

2018-01-30 Thread Mike Reilly (WDG) via Public
Microsoft votes YES From: Public [mailto:public-boun...@cabforum.org] On Behalf Of Tim Hollebeek via Public Sent: Monday, January 29, 2018 1:52 PM To: CA/Browser Forum Public Discussion List Subject: [cabfpub] Voting begins: Ballot 218 version 2 I'm highly skeptical that

Re: [cabfpub] Voting begins: Ballot 218 version 2

2018-01-30 Thread Neil Dunbar via Public
TrustCor votes YES on Ballot 218. Neil > On 30 Jan 2018, at 17:03, Rich Smith via Public wrote: > > Comodo CA votes YES on Ballot 218. ___ Public mailing list Public@cabforum.org https://cabforum.org/mailman/listinfo/public

Re: [cabfpub] Voting begins: Ballot 218 version 2

2018-01-30 Thread Rich Smith via Public
Comodo CA votes YES on Ballot 218. From: Public [mailto:public-boun...@cabforum.org] On Behalf Of Tim Hollebeek via Public Sent: Monday, January 29, 2018 3:52 PM To: CA/Browser Forum Public Discussion List Subject: [cabfpub] Voting begins: Ballot 218 version 2 I'm

Re: [cabfpub] Voting on Ballot 218

2018-01-30 Thread Ryan Sleevi via Public
On Tue, Jan 30, 2018 at 9:37 AM, Kirk Hall via Public wrote: > Tim – your argument is “who knows if any certs have been misissued under > Method 1” could apply to all other methods. That’s not an argument that > there HAVE been misissued certs. We have been using the

Re: [cabfpub] Voting on Ballot 218

2018-01-30 Thread Tim Hollebeek via Public
> > Your second statement – that Symantec issued lots of certificates > > using Method 1 that DigiCert would never have issued – seems to imply > > you have found misissuance by Symantec. > > No, it doesn't. It means that the level of assurance that it went to the right > person is not high

Re: [cabfpub] Voting on Ballot 218

2018-01-30 Thread Gervase Markham via Public
Hi Kirk, On 30/01/18 14:37, Kirk Hall via Public wrote: > Tim – your argument is “who knows if any certs have been misissued under > Method 1” could apply to all other methods.  That’s not an argument that > there HAVE been misissued certs.  We have been using the method for many > years at

[cabfpub] Voting on Ballot 218

2018-01-30 Thread Kirk Hall via Public
Entrust votes no. There have been no cases of misissuance using Method 1 over roughly 20 years, and this will have a great impact on enterprise website owners and CAs around the world. We will continue working with others to clarify the requirements of Method 1 and bring them back in a new

Re: [cabfpub] Voting on Ballot 218

2018-01-30 Thread Kirk Hall via Public
Tim - your argument is "who knows if any certs have been misissued under Method 1" could apply to all other methods. That's not an argument that there HAVE been misissued certs. We have been using the method for many years at multiple companies for many major enterprises (who would certainly be

Re: [cabfpub] Voting on Ballot 218

2018-01-30 Thread Tim Hollebeek via Public
> There have been no cases of misissuance using Method 1 over roughly 20 years You guys have been told repeatedly that you have no evidence this statement is true. You need to stop saying it. The truth is it is extremely hard to "misissue" a certificate using method 1, precisely because