Tags: sleevi/cabforum-docs
Tags
SC45: Wildcard Domain Validation (cabforum#269) (cabforum#292) * SC45: Wildcard Domain Validation (cabforum#269) * Attempt to cleanup wildcard rules Address longstanding feedback from the Validation Summit in Herdon (Meeting 43) regarding wildcard domain names. This limits the ability to use a certificate as an Authorization Domain Name (aka parent & all child and grandchild domains) or to issue Wildcard Certificates (which cover all child domains, but not grandchild domains) to those methods which are linked to DNS-based proofs of control/authorization. * Adjust based on feedback * Add titles for .18/.19 to Appendix B, to match .6 * Remove two-label exclusion and tighten language * Restore 3.2.2.4.6 to handle if SC42 passes If SC42 passes, the change to 3.2.2.4.6 is unnecessary, because no reused validations will be performed after the effective date. Co-authored-by: Jos <castillar@melete.org> * Fix dates and ballot table Co-authored-by: Ryan Sleevi <sleevi@google.com> Co-authored-by: Jos Purvis <jopurvis@cisco.com>
Ballot SC46 Final: Sunset the CAA exception for DNS operator (cabforu… …m#271) (cabforum#291) * Sunset the CAA exception for DNS operator (cabforum#271) Co-authored-by: Jos <castillar@melete.org> * Update version for publication * Updating effective date to provide time for review Co-authored-by: Ryan Sleevi <sleevi@google.com> Co-authored-by: Jos Purvis <jopurvis@cisco.com>
SC44 - Clarify Acceptable Status Codes (cabforum#281) * Ballot sc44 clarify acceptable status codes (cabforum#265) * Clarify the acceptable status codes for Redirects in methods 18 and 19 * Added a relevant date, RFC citations, and made other suggested changes * Made more review changes Co-authored-by: Niko Carpenter <NCarpenter@securetrust.com> * Version and date changes Co-authored-by: Niko Carpenter <nikoacarpenter@gmail.com> Co-authored-by: Niko Carpenter <NCarpenter@securetrust.com> Co-authored-by: Jos Purvis <jopurvis@cisco.com>
SC42 - 398-day Re-use Period (cabforum#280) * Ballot SC42: 398-day reuse period (cabforum#260) * Update BR.md * Replaced verify with reuse Replaced verify with reuse Co-authored-by: Ben Wilson <bwilson@mozilla.com> * BR date and version changes * EVG date and version changes Co-authored-by: Ryan Sleevi <sleevi@google.com> Co-authored-by: Ben Wilson <bwilson@mozilla.com> Co-authored-by: Jos Purvis <jopurvis@cisco.com>
SC42 - 398-day Re-use Period (cabforum#280) * Ballot SC42: 398-day reuse period (cabforum#260) * Update BR.md * Replaced verify with reuse Replaced verify with reuse Co-authored-by: Ben Wilson <bwilson@mozilla.com> * BR date and version changes * EVG date and version changes Co-authored-by: Ryan Sleevi <sleevi@google.com> Co-authored-by: Ben Wilson <bwilson@mozilla.com> Co-authored-by: Jos Purvis <jopurvis@cisco.com>
SC41 infra cleanup (cabforum#261) * Fix cover pages to match tables * Correct the infra for adding the draft watermark The tooling incorrectly used `event.name`, when it should have been looking at `event_name`. This fixes it so that pushes to `cabforum/servercert`'s `main` branch don't have the draft watermark added. Co-authored-by: Jos Purvis <jopurvis@cisco.com> Co-authored-by: sleevi <sleevi@google.com>
SC41 infra cleanup (cabforum#261) * Fix cover pages to match tables * Correct the infra for adding the draft watermark The tooling incorrectly used `event.name`, when it should have been looking at `event_name`. This fixes it so that pushes to `cabforum/servercert`'s `main` branch don't have the draft watermark added. Co-authored-by: Jos Purvis <jopurvis@cisco.com> Co-authored-by: sleevi <sleevi@google.com>
SC41 infra cleanup (cabforum#261) * Fix cover pages to match tables * Correct the infra for adding the draft watermark The tooling incorrectly used `event.name`, when it should have been looking at `event_name`. This fixes it so that pushes to `cabforum/servercert`'s `main` branch don't have the draft watermark added. Co-authored-by: Jos Purvis <jopurvis@cisco.com> Co-authored-by: sleevi <sleevi@google.com>