2025-03-20 Minutes of the Code Signing Certificate Working Group
Minutes of CSCWG
March 20, 2025
Attendees
Brianca Martin (Amazon), Brian Winters (IdenTrust), Bruce Morton (Entrust), Corey Bonnell (DigiCert), Dean Coclin (DigiCert), Inaba Atsushi (GlobalSign), Iñigo Barreira (Sectigo), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Marco Schambach (IdenTrust), Martijn Katerbarg (Sectigo), Nate Santiago (Microsoft), Nome Huang (TrustAsia), Rebecca Kelly (SSL.com), Thomas Zermeno (SSL.com)
Note Well
Thomas Zermeno read the Note Well.
Approval of prior meeting minutes
No minutes to approve at this time.
Preparation and review of F2F Agenda
• Pre-emptive revocation • Further restricting Hardware Key usage options • PQC - update on draft ballot o Nate requested to be sent information about this as there have been some issues with receiving list emails.
Maximum validity of CS certificates
No further updates at this time.
Moving towards a single profile
No further updates at this time. Bruce adds that we need to start moving on this since Microsoft has been pushing for this deprecation.
There’s a short discussion on if we should have these topics still on the agenda if they’re not moving yet. Corey suggests utilizing GitHub issues to keep track.
CSC-29: Aligning CSCWG BRs with recent SCWG ballots -In discussion period
No further update at this point
Any Other Business
Nate inquired about usage of the mailing lists and making sure all members are added. Nate will reach out to Martijn to make sure everything is in order.