CA/Browser Forum
Home » All CA/Browser Forum Posts » 2022-09-29 Minutes of the Server Certificate Working Group

2022-09-29 Minutes of the Server Certificate Working Group

Attendees

Adam Jones (Microsoft), Adrian Mueller (SwissSign), Arno Fiedler (D-TRUST), Ben Wilson (Mozilla), Bruce Morton (Entrust), Chris Clements (Google), Chris Kemmerer (SSL.com), Clint Wilson (Apple), Corey Bonnell (Digicert), Daryn Wright (GoDaddy), David Kluge (Google), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Fumi Yoneda (Japan Registry Services), Hazhar Ismail (MSC Trustgate Sdn Bhd), Hogeun Yoo (NAVER Cloud), Inaba Atsushi (GlobalSign), Inigo Barreira (Sectigo), Joanna Fox (TrustCor Systems), John Mason (Microsoft), Johnny Reading (GoDaddy), Jos Purvis (Fastly), Kiran Tummala (Microsoft), Li-Chun Chen (Chunghwa Telecom), Lynn Jeun (Visa), Mads Henriksveen (Buypass AS), Marcelo Silva (Visa), Martijn Katerbarg (Sectigo), Michelle Coon (OATI), Nargis Mannan (SecureTrust), Paul van Brouwershaven (Entrust), Pedro Fuentes (OISTE Foundation), Peter Miskovic (Disig), Rebecca Kelley (Apple), Ryan Dickson (Google), Stephen Davidson (Digicert), Steven Deitte (GoDaddy), Tadahiko Ito (SECOM Trust Systems), Tobias Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Tyler Myers (GoDaddy), Wayne Thayer (Fastly), Yoshiro Yoneya (Japan Registry Services)

Minutes

1. Read Antitrust Statement

Dean Coclin read the antitrust statement.

2. Roll Call

Jos Purvis read the roll.

3. Review Agenda

No changes were made to the agenda.

4. Approval of Minutes from Last Teleconference

The minutes from the 15-September call were approved without changes.

5. Validation Subcommittee Update

Corey Bonnell said that the group met last week and first reviewed a PR related to EV subject attributes for the profiles ballot. There was general agreement, however some further clarification of the language may be attempted. Second, the group continued their review of the uses of “Applicant” and “Applicant Representative” in the BRs. They made it through all the domain validation methods, and agreed to skip the IP address validation methods. The group will continue this review next week.

6. Ballot Status

Ballots in Discussion Period

  • None

Ballots in Voting Period

  • SC55 – Election of the SCWG Chair

Jos said that there are two candidates – Inigo Barreira and Tim Hollebeek. Please submit votes by email to Don Sheehy and Clemens Wanko by tomorrow at 12:00 EDT. We’ll have results on the next call.

Ballots in Review Period

  • None

Draft Ballots Under Consideration

  • Revival of Debian Weak Keys

Chris Kemmerer said that he is still seeking endorsers and will post a plea to the thread next week if no one steps forward before then.

  • SLO/Response for CRL & OCSP Responses

David Kluge said that he has no update this week.

  • Incorporation of Mozilla Revocation Reason Codes

Ben Wilson said that he is working with two endorsers on revisions to the ballot.

7. Any Other Business

  • Update on election of SCWG Chair / Vice Chair

Jos reiterated that the voting period for SCWG chair closes tomorrow.

Dean asked if there are any nominations for Vice Chair.

Jos said that there are no nominations at this time, and he encouraged nominations including of the candidates for Chair, Nominations close on Monday.

Dimitris Zacharopoulos asked if the nomination period has commenced for SCWG Vice Chair?

Dean quoted an email from September 12 that opened Vice Chair nominations for the Forum and all working groups.

Jos said that we could extend the period if needed.

Dean said that he has no nominations for CSC and SMC Vice Chair.

Jos said that he will send out an email and extend the nomination period to the end of next week

Inigo Barreiraasked when results will be communicated, and Dean said that they should be announced tomorrow.

Trevoli Ponds-White said that we have agreed to vote for Vice Chairs after Chairs. Do we need to amend the Bylaws to make this clear?

Dean said that Tim is planning a Bylaws update that will clarify the election process, and Dimitris agreed.

8. Next call: 12-October 2022 at 11AM Eastern

Adjourn; Immediately convene meeting of CA Browser Forum (same call)

Latest releases
Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.7 - Ballot SMC09 - Nov 25, 2024

This ballot includes updates for the following: • Require pre-linting of leaf end entity Certificates starting September 15, 2025 • Require WebTrust for Network Security for audits starting after April 1, 2025 • Clarify that multiple certificatePolicy OIDs are allowed in end entity certificates • Clarify use of organizationIdentifer references • Update of Appendix A.2 Natural Person Identifiers This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Clint Wilson (Apple) and Martijn Katerbarg (Sectigo).

Network and Certificate System Security Requirements
v2.0 - Ballot NS-003 - Jun 26, 2024

Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35

Edit this page
The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).