The IPR Agreement Review Period for Ballot SC3 – Two-Factor Authentication and Password Improvements- has ended, and no Exclusion Notices were filed. Ballot SC3 became effective as of September 15, 2018.
The Network and Certificate System Security Requirements Version 1.2 including the Ballot SC3 changes is attached, and will be uploaded to the public website and the wiki.
BR v2.1.5
What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8
This ballot allows the option to use a European Unique Identifier (EUID) as a Registration Reference in the NTR Registration Scheme. The EUID uniquely identifies officially-registered organizations, Legal Entities, and branch offices within the European Union or the European Economic Area. The EUID is specified in chapter 9 of the Annex contained in the Implementing Regulation (EU) 2021/1042 which describes rules for the application of Directive (EU) 2017/1132 “relating to certain aspects of company law (codification)”. The ballot also includes several editorial corrections, (e.g., reordering of References and regrouping of information from Appendix A to Section 7.1.4.2.2 (d)). This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Adrian Mueller (SwissSign) and Adriano Santoni (Actalis).
Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35