Open CP issues:

1. Authentication of organization identity - document our current practice Check PAG section D.3.2.5 for additional information.

   • Moved and described in the new PMA charter document

2. Rekeying and reissuing, renewal

   • Postponed for additional discussion

3. Host/service certificate issuing policy - by policy we say only valid cert holders can apply - do we want this, should we enforce it?

   • Postponed for additional discussion. left unchanged

4. 3.1.3 Uniqueness of names - allow multiple certificates per host - no FQDN requirement.
   • Postponed for additional discussion.
5. Sec 1.1 add ESnet's relationship to LBNL
   • Added
6. sec 1.3.1 add system architecture delineate what parts are managed by ESnet and other organizations.
   • Added, including table of components. 
7. sec 2.1.2 add subscriber definition
   • Added to general definitions sec 1.1.1
8. Add Acronym definitions
   • What Acronyms?
9. sec 3.1.5 clean up the definition of how we do Individual identity. Also how RM's will be used and deployed - tie to sec 1.3.1.
   • Added text and link to certificate work flow
10. sec 4.2.2 Format error and redundant information
    • could not find - old problem??
11. App A A.2, item 8 Add emphasize that the Rags may NOT do the following...
    • Changed.
12. Replace section 6.1.9 with input from list.
    • Replaced with Von's input
13. CRL distribution point located in PKI1 certificate.  Where should it point to?
    • Changed 2.1.4 to reflect the new repositories.
14. How to vet new RAs?
    • Moved and described in the new PMA charter.

Other changes:

1. Changed the title of the doc to reflect new Name - DOE Grids
2. Global change of DOESG for DOE Grids
3. changed 1.2 to reflect new name version...
4. Changed link to point to new site.
5. changed 1.3.2
6. changed 2.1.1 certificate life time to 12 months. EDG requirement??
7. Changed 6.3 CA certificate life time to 5 years. EDG requirement??
8. 7.1.4 changed names to doegrids.