CA/Browser Forum
Home » All CA/Browser Forum Posts » 2018-11-29 Minutes for Server Certificate Working Group Teleconference

2018-11-29 Minutes for Server Certificate Working Group Teleconference

Attendees (in alphabetical order)

Anna Weinberg (Apple), Ben Wilson (Digicert), Bruce Morton (Entrust Datacard), Chris Kemmerer (SSL.com), Dean Coclin (Digicert), Devon O’Brien (Google), Dimitris Zacharopoulos (HARICA), Enrico Entschew (D-TRUST), Fotis Loukos (SSL.com), Frank Corday (Trustwave), Geoff Keating (Apple), Gordon Bock (Microsoft), Inaba Atsushi (GlobalSign), India Donald (US Federal PKI Management Authority), Jeff Ward (CPA Canada/WebTrust), Joanna Fox (GoDaddy), Jos Purvis (Cisco Systems), Julie Olson (Globalsign), Kenneth Myers (US Federal PKI Management Authority), Kirk Hall (Entrust Datacard), Li-Chun Chen (Chunghwa Telecom), Marcelo Silva (Visa), Michelle Coon (OATI), Neil Dunbar (TrustCor Systems), Peter Miskovic (Disig), Ryan Sleevi (Google), Scott Rea (Dark Matter), Shelley Brewer (Digicert), Tim Hollebeek (Digicert), Tim Shirley (Trustwave), Trevoli Ponds-White (Amazon), Wayne Thayer (Mozilla).

Minutes

1. Roll Call

The Chair took attendance.

2. Read Antitrust Statement

The Chair played back the Antitrust Statement.

3. Review Agenda

Today’s Agenda was approved.

4. Approval of Minutes of previous teleconference

The minutes of November 15, 2018 teleconference were approved and will be posted to the Public list and the Public web site.

5. Validation Subcommittee Update

The Subcommittee did not have a meeting since the previous WG teleconference due to Thanksgiving holiday. There has been some discussion on the subcommittee mailing list around the organizationIdentifier field being requested to be allowed in EV Certificates. Tim mentioned that a significant portion of the next subcommittee meeting will be spent on that topic.

6. NetSec Subcommittee Update

Ben reported that the NetSec Subcommittee will be meeting after the regular CA/B Forum teleconference. The first meeting will take place at noon Eastern Time. There is no specific agenda for the first meeting but will probably talk about previous work and what’s mandated in the new charter and scope how we want to approach the new subcommittee work. Ben took Tim’s advice to start a trello board, add tasks and track progress.

7. Ballot Status

Ballots in Discussion Period

Ballot SC13: CAA Contact Property and Associated E-mail Validation Methods (Tim H.) Tim will send an updated version with a couple of fixes based on the recent discussion, hoping this will be the last iteration before voting begins. He also mentioned that if members have any problems related to the proposed ballot to please speak up.

Ballots in Review Period _Ballot SC12 – Sunset of Underscores in dNSName_s (Wayne) No exclusion notices have been filed so far.

Draft Ballots under Consideration

Removing “any other method” for IP address (Tim H.) This will probably be discussed in the upcoming Validation subcommittee call.

Improvements for Method 6, website control (Tim H.) No comments were made.

8. Any Other Business

None.

9. Next call

December 13, 2018 at 11:00 am Eastern Time.

Adjourned

Latest releases
Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.7 - Ballot SMC09 - Nov 25, 2024

This ballot includes updates for the following: • Require pre-linting of leaf end entity Certificates starting September 15, 2025 • Require WebTrust for Network Security for audits starting after April 1, 2025 • Clarify that multiple certificatePolicy OIDs are allowed in end entity certificates • Clarify use of organizationIdentifer references • Update of Appendix A.2 Natural Person Identifiers This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Clint Wilson (Apple) and Martijn Katerbarg (Sectigo).

Network and Certificate System Security Requirements
v2.0 - Ballot NS-003 - Jun 26, 2024

Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35

Edit this page
The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).