CA/Browser Forum
Home » All CA/Browser Forum Posts » 2021-07-08 Minutes of the Server Certificate Working Group

2021-07-08 Minutes of the Server Certificate Working Group

Attendees

Adrian Mueller (SwissSign), Ali Gholami (Telia), Ben Wilson (Mozilla), Bruce Morton (Entrust), Chris McMillan (Visa), Clint Wilson (Apple), Corey Bonnell (Digicert), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Enrico Entschew (D-TRUST), Inaba Atsushi (GlobalSign), Johnny Reading (GoDaddy), Jos Purvis (Cisco Systems), Karina Sirota (Microsoft), Kati Davids (GoDaddy), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Paul van Brouwershaven (Entrust), Rebecca Kelley (Apple), Ryan Sleevi (Google), Sebastian Schulz (GlobalSign), Shelley Brewer (Digicert), Stephen Davidson (Digicert), Tadahiko Ito (SECOM Trust Systems), Tim Hollebeek (Digicert), Tobias Josefowitz (Opera Software AS), Vijayakumar (Vijay) Manjunatha (eMudhra), Wayne Thayer (Mozilla), Wendy Brown (US Federal PKI Management Authority), Tyler Myers (GoDaddy), Fumihiko Yoneda (Japan Registry Services), Yoshiro Yoneya (Japan Registry Services)

Minutes

1. Read Antitrust Statement

Jos Purvis read the antitrust statement.

2. Roll Call

Wayne Thayer read the roll.

3. Review Agenda

No changes were made to the agenda.

4. Approval of minutes from last teleconference

Jos said that the minutes from the face-to-face have been posted and asked if everyone is ready to approve. There were no objections, and the minutes from the face-to-face were approved.

5. Validation Subcommittee Update

Tim Hollebeek said that the certificate profile work was discussed. The consensus was that the draft is ready for CAs to review. Then they discussed ballot SC48.

6. NetSec Subcommittee Update

Ben Wilson reported that the subcommittee met briefly. It was announced that Neil Dunbar is leaving his position at Trustcor and a new committee chair will need to be found.

Jos thanked Neil for his service to the Forum.

7. Ballot Status

Ballots in Discussion Period

Ballot SC48: Domain Name and IP Address Encoding

Corey Bonnell said that discussion had started on Tuesday. Two small typos were then identified and corrected, and discussion for version 2 of the ballot was started just before the meeting.

Ballots in Voting Period

None

Ballots in Review Period

  • Ballot SC47: Sunset subject:organizationalUnitName (Completes 2021-Aug-07)
  • Ballot SC46: Sunset the CAA Exception (Completes 2021-Jul-09)
  • Ballot SC45: Validation methods for Wildcards/ADNs (Completes 2021-Jul-09)

Draft Ballots Under Consideration

Ballot SCXX: Debian Weak Keys (Chris)

No update.

Ballot SC34 Account Management (Tobi)

Tobi Josefowitz said he had no update this week.

8. Any Other Business

None

9. Next call: July 22, 2021 at 11AM Eastern

Adjourn; Immediately convene meeting of CA Browser Forum call (same call)

Latest releases
Server Certificate Requirements
SC-081v3: Introduce Schedule of Reducing Validity and Data Reuse Periods - May 21, 2025

BR v2.1.5

Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.9 - Ballot SMC011 - May 14, 2025

This ballot allows the option to use a European Unique Identifier (EUID) as a Registration Reference in the NTR Registration Scheme. The EUID uniquely identifies officially-registered organizations, Legal Entities, and branch offices within the European Union or the European Economic Area. The EUID is specified in chapter 9 of the Annex contained in the Implementing Regulation (EU) 2021/1042 which describes rules for the application of Directive (EU) 2017/1132 “relating to certain aspects of company law (codification)”. The ballot also includes several editorial corrections, (e.g., reordering of References and regrouping of information from Appendix A to Section 7.1.4.2.2 (d)). This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Adrian Mueller (SwissSign) and Adriano Santoni (Actalis).

Network and Certificate System Security Requirements
v2.0 - Ballot NS-003 - Jun 26, 2024

Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35

Edit this page
The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).