Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Jeff Ward via Public
eff Ward Cc: CA/Browser Forum Public Discussion List Subject: RE: [cabfpub] Applicability of BRs to Client Authentication certificates It’s a good time to do it, too, since after governance reform, we want to be able to quickly know which certificates are in scope for which working groups. We d

Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Tim Hollebeek via Public
: Jeff Ward Cc: Tim Hollebeek ; CA/Browser Forum Public Discussion List Subject: Re: [cabfpub] Applicability of BRs to Client Authentication certificates On Thu, Apr 12, 2018 at 1:45 PM, Jeff Ward mailto:jw...@bdo.com> > wrote: If 7.1.2.3.f is ignored, it is less confusing, but th

Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Ryan Sleevi via Public
On Thu, Apr 12, 2018 at 1:45 PM, Jeff Ward wrote: > If 7.1.2.3.f is ignored, it is less confusing, but there is still > potential ambiguity as to what ‘authenticating a server accessible through > the Internet’ means. It would be best if the BRs clearly specified the > technical characteristics o

Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Jeff Ward via Public
evi ; Jeff Ward Subject: RE: [cabfpub] Applicability of BRs to Client Authentication certificates … even WITHOUT 7.1.2.3.f … From: Public [mailto:public-boun...@cabforum.org] On Behalf Of Tim Hollebeek via Public Sent: Thursday, April 12, 2018 1:25 PM To: Ryan Sleevi mailto:sle...@google.com>

Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Tim Hollebeek via Public
[mailto:public-boun...@cabforum.org] On Behalf Of Ryan Sleevi via Public Sent: Thursday, April 12, 2018 1:20 PM To: Jeff Ward mailto:jw...@bdo.com> >; CA/Browser Forum Public Discussion List mailto:public@cabforum.org> > Subject: Re: [cabfpub] Applicability of BRs to Client Authentication

Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Tim Hollebeek via Public
...@cabforum.org] On Behalf Of Ryan Sleevi via Public Sent: Thursday, April 12, 2018 1:20 PM To: Jeff Ward ; CA/Browser Forum Public Discussion List Subject: Re: [cabfpub] Applicability of BRs to Client Authentication certificates On Thu, Apr 12, 2018 at 1:11 PM, Jeff Ward via Public

Re: [cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Ryan Sleevi via Public
On Thu, Apr 12, 2018 at 1:11 PM, Jeff Ward via Public wrote: > I am submitting this request on behalf of the WebTrust Task Force. We > would like to seek clarification from the CA/B Forum on the applicability > of the Baseline Requirements for certificates that chain to a Root in a > browser roo

[cabfpub] Applicability of BRs to Client Authentication certificates

2018-04-12 Thread Jeff Ward via Public
I am submitting this request on behalf of the WebTrust Task Force. We would like to seek clarification from the CA/B Forum on the applicability of the Baseline Requirements for certificates that chain to a Root in a browser root store, which are only used for TLS Web Client Authentication (i.e.