CA/Browser Forum
Home » All CA/Browser Forum Posts » 2018-07-26 Forum Minutes

2018-07-26 Forum Minutes

Attendees: Arno Fiedler (D-TRUST), Atsushi Inaba (GlobalSign), Ben Wilson (DigiCert), Bruce Morton (Entrust), Cecilia Kam, (GlobalSign), Christopher Kemmerer (SSL.com), Corey Bonnell (Trustwave), Daymion Reynolds (GoDaddy), Dean Coclin (DigiCert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Frank Corday (Trustwave), India Donald (FPKI), Joanna Fox (GoDaddy), Jos Purvis (Cisco), Kirk Hall (Entrust), Li-Chun Chen (Chunghwa Telecom), Marcelo Silva (Visa), Michele Coon (OATI), Neil Dunbar (Trustcor), Patrick Tronnier (OATI), Peter Miscovic (Disig), Rich Smith (ComodoCA), Shelley Brewer (DigiCert), Tim Hollebeek (DigiCert), Tim Shirley (Trustwave), Trevoli Ponds-White (Amazon), Virginia Fournier (Apple), Wendy Brown (Federal PKI).

  1. Roll Call
  2. Read Antitrust Statement
  3. Review Agenda. Agenda was approved.
  4. Approval of Minutes of teleconference of July 12, 2018. The Minutes were approved, and will be posted to the Public list.
  5. Confirmation of Members, Associate Members, and Interested of the Forum as of July 26, 2018. Kirk noted he had sent an email to Members on July 24 listing all the Members, Associate Members, and Interested Parties who appeared to qualify for the CA/Browser Forum, and asked if there were any objections. There were no objections. Accordingly, the current list of Members, Associate Members, and Interested Parties of the CA/Browser Forum is as follows:
  • CA MEMBERS:* AC Camerfirma, AC Firmaprofessional, Actalis, Amazon, ASSECO, Buypass, Certigna, Certinomis , certSIGN , CFCA, Chunghwa Telecom, Comodo CA Ltd., Comsign (Comda), D-Trust, DigiCert, Digidentity, Disig, a.s., E-Tugra, Entrust Datacard, GDCA, GlobalSign, GoDaddy, HARICA, Izenpe, Kamu Sertifikasyon Merkezi, KPN, Let’s Encrypt, Logius PKIoverheid, NCDC, Network Solutions, OATI CA, První certifikační autorita, a.s., QuoVadis, Secom Trust Systems, SHECA, SK ID Solutions AS, SSC, SSL.com, SwissSign , TrustCor Systems, Trustwave, TURKTRUST Inc., TWCA, Visa** ** BROWSER MEMBERS: Apple, Brave, Cisco, Comodo Security Solutions, Inc., Google, Microsoft, Mozilla, Opera Software AS, 360,
  • ASSOCIATE MEMBERS:* ACAB’c, CPA Canada, ETSI (Letter of cooperation), ICANN, tScheme, U.S. Federal PKI Management Authority
  • *INTERESTED PARTIES: ** Individuals: Andrew Ayer, James Burton, Christopher Czajczyc, Arno Fiedler, Benedikt Heintel, Carl Mehner, Eric Mill, Patrick Nohe, Scott Rea, Jonathan Rudenberg, Quirin Scheitle
  • Organizations,* Accredited Conformity Assessment Bodies’ Council (ACAB’C), Certizen, CloudFlare, Dark Matter, Electronic Frontier Foundation (EFF), K Software LLC, KPMG AG, Leader Telecom BV, PrimeKey, PSW Group GmbH
  1. Governance Change Working Group. Ben said the WG had met earlier in the week, and had discussed the following topics:
  • Change officer terms for the Forum and SCWG to run from Nov. 1 until Oct. 31 (two years). Kirk added that nominations for the Chair of the Forum and the SCWG will be open on August 9. Kirk noted that the current officer terms end on Oct. 21, and originally he thought it would be fine to have no officers for a 10 day period, Oct. 22-31, but that someone on the call pointed out we might need a Chair to accept Exclusion Notices following IPR review during that period, etc., so the recommendation was to hold a Forum ballot to extend the current officer terms by 10 days, through Oct. 31. Dimitris asked if we also needed an SCWG ballot extending the current officer terms as well, and Kirk said he’d check the wording of Ballot 206.
  • Check to see what amendment is needed for ETSI audit nomenclature in the Forum’s Bylaws based on Dimitris’ email of Feb. 6, 2018. A correction ballot will come soon.
  • Revisit status of transition under new Bylaws, and ongoing need for Governance Change Working Group meetings through Oct. 3. The WG will continue to meet to complete transition issues.
  • Discuss definition/meaning of “Member” and “Membership” – the Forum and SCWG should each ask Members, Associate Members, and Interested Parties to list their representatives, and to keep the list up to date.
  • Discuss who must sign the IPR Policy Agreement if a listed representative is not an employee of the Member, Associate Member, or Interested Party.
  • Clarify when Forum Bylaws apply to Chartered Working Groups (e.g., rules on election of officers, etc.). The Bylaws will be amended to clarify.
  1. Ballot Status – Dimitris brought up Jos’ draft Ballot 227 to establish a Forum Infrastructure Working Group. Jos explained the ballot was to remedy the current ad hoc nature of Forum infrastructure projects (maintaining email lists and the wiki, etc.), and said a new Working Group could help the Forum address additional needs now that the SCWG and other new Working Groups were coming online. Kirk asked if this infrastructure group could instead be a Subcommittee of the Forum so it would clearly be under the Forum’s direction, but Jos said Subcommittees were not allowed at the Forum level under the new Bylaws to avoid IP issues. However, he added that this new WG couldn’t impose any infrastructure decisions on anyone, but would just make suggestions to the Forum as a whole. Significant changes would require a Ballot of the Forum. Kirk asked that that be made clear in the Charter.
  2. Dimitris raised the question of who could be a member of this new WG, and whether they would also have to be a member of another WG, not just this one. Jos agreed that was a good requirement. Dimitris said that there would be no IP problems if this was to become a Subcommittee at the Forum level because members participating in this Subcommittee would have signed the IPR Agreement already by participating in at least another WG. Tim said the WG wouldn’t be working on issues involving IP anyway. Rich suggested this new WG should also come up with guidelines and information for members on how to do things like add or remove emails from lists and wiki access for Member representatives. Marcelo asked if it was really necessary to create a WG for infrastructure issues, or could the Forum just do it on its own. Jos said the current process is just informal maintenance by a few Members, but with recent changes we need a more structured approach. Kirk asked Jos to continue working on his ballot and take all the comments into account in a new draft.
  3. Any Other Business. There was no other business.
  4. Next call: August 9, 2018
  5. Adjourn
Latest releases
Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.7 - Ballot SMC09 - Nov 25, 2024

This ballot includes updates for the following: • Require pre-linting of leaf end entity Certificates starting September 15, 2025 • Require WebTrust for Network Security for audits starting after April 1, 2025 • Clarify that multiple certificatePolicy OIDs are allowed in end entity certificates • Clarify use of organizationIdentifer references • Update of Appendix A.2 Natural Person Identifiers This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Clint Wilson (Apple) and Martijn Katerbarg (Sectigo).

Network and Certificate System Security Requirements
v2.0 - Ballot NS-003 - Jun 26, 2024

Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35

Edit this page
The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).