CA/Browser Forum posts
Posts by author Ben Wilson
2016-04-28 Minutes
April 28, 2016 by Ben WilsonFinal minutes April 28, 2016 Attendees: Andrew Whalley (Google), Alex Wight (Cisco), Atsushi Inaba (Globalsign), Ben Wilson (Digicert), Billy VanCannon (Trustwave), Cap Hayes (Cisco), Dean Coclin (Symantec), Dimitris Zacharopoulos (Harica), Doug Beattie (Globalsign), Gervase Markham (Mozilla), JC Jones (Mozilla), Jeremy Rowley (Digicert), Jody Cloutier (Microsoft), Li-Chun Chen (Chunghwa Telecom),Mads Henriksveen (BuyPass), Moudrick Dadashov (SSC), Neil Dunbar (Trustcor), Patrick Tonnier (OATI), Peter Bowen (Amazon), Rich Smith (Comodo), Rick Andrews (Symantec), Robin Alden (Comodo), Ryan Sleevi (Google), Sissel Hoel (Buypass), Tim Hollebeek (Trustwave), Tim Shirley (Trustwave),Volkan Nergiz (TurkTrust), Wayne Thayer (GoDaddy)
April 28, 2016 by Ben WilsonFinal minutes April 28, 2016 Attendees: Andrew Whalley (Google), Alex Wight (Cisco), Atsushi Inaba (Globalsign), Ben Wilson (Digicert), Billy VanCannon (Trustwave), Cap Hayes (Cisco), Dean Coclin (Symantec), Dimitris Zacharopoulos (Harica), Doug Beattie (Globalsign), Gervase Markham (Mozilla), JC Jones (Mozilla), Jeremy Rowley (Digicert), Jody Cloutier (Microsoft), Li-Chun Chen (Chunghwa Telecom),Mads Henriksveen (BuyPass), Moudrick Dadashov (SSC), Neil Dunbar (Trustcor), Patrick Tonnier (OATI), Peter Bowen (Amazon), Rich Smith (Comodo), Rick Andrews (Symantec), Robin Alden (Comodo), Ryan Sleevi (Google), Sissel Hoel (Buypass), Tim Hollebeek (Trustwave), Tim Shirley (Trustwave),Volkan Nergiz (TurkTrust), Wayne Thayer (GoDaddy)
Ballot 167 – Baseline Requirements Corrections
April 21, 2016 by Ben WilsonVoting on Ballot 167 (BR Corrections) has closed. The results are as follows: From the CAs we received 2 YES votes, 1 NO vote and 0 Abstentions From the Browsers we received 2 YES votes, 0 NO Votes and 0 Abstentions However, the quorum was not met and therefore the ballot fails. The following motion has been proposed by Peter Bowen of Amazon and endorsed by Dimitris Zacharopoulos of HARICA and Josh Aas of ISRG:
April 21, 2016 by Ben WilsonVoting on Ballot 167 (BR Corrections) has closed. The results are as follows: From the CAs we received 2 YES votes, 1 NO vote and 0 Abstentions From the Browsers we received 2 YES votes, 0 NO Votes and 0 Abstentions However, the quorum was not met and therefore the ballot fails. The following motion has been proposed by Peter Bowen of Amazon and endorsed by Dimitris Zacharopoulos of HARICA and Josh Aas of ISRG:
2016-04-14 Minutes
April 14, 2016 by Ben WilsonMinutes of CA/Browser Forum Teleconference – April 14, 2016 Attendees: Andrew Whalley (Google), Alex White (Cisco), Atsushi Inaba (Globalsign), Ben Wilson (Digicert), Billy VanCannon (Trustwave), Bruce Morton (Entrust), Dean Coclin (Symantec), Dimitris Zacharopoulos (Harica), Doug Beattie (Globalsign), Eddy Nigg (Startcom), Geoff Keating, Apple, Gervase Markham (Mozilla), JC Jones (Mozilla), Jeremy Rowley (Digicert), Jody Cloutier (Microsoft), Josh Aas (Let’s Encrypt), Josh Purvis (Cisco), Kirk Hall (Trend Micro), Li-Chun Chen (Chunghwa Telecom), Marcelo Silva (VISA), Mat Caughron (Apple), Moudrick Dadashov (SSC), Patrick Tonnier (OATI), Peter Bowen (Amazon), Robin Alden (Comodo), Ryan Sleevi (Google), Tim Hollebeek (Trustwave), Tyler Myers (GoDaddy), Virginia Fournier (Apple), Wayne Thayer (GoDaddy)
April 14, 2016 by Ben WilsonMinutes of CA/Browser Forum Teleconference – April 14, 2016 Attendees: Andrew Whalley (Google), Alex White (Cisco), Atsushi Inaba (Globalsign), Ben Wilson (Digicert), Billy VanCannon (Trustwave), Bruce Morton (Entrust), Dean Coclin (Symantec), Dimitris Zacharopoulos (Harica), Doug Beattie (Globalsign), Eddy Nigg (Startcom), Geoff Keating, Apple, Gervase Markham (Mozilla), JC Jones (Mozilla), Jeremy Rowley (Digicert), Jody Cloutier (Microsoft), Josh Aas (Let’s Encrypt), Josh Purvis (Cisco), Kirk Hall (Trend Micro), Li-Chun Chen (Chunghwa Telecom), Marcelo Silva (VISA), Mat Caughron (Apple), Moudrick Dadashov (SSC), Patrick Tonnier (OATI), Peter Bowen (Amazon), Robin Alden (Comodo), Ryan Sleevi (Google), Tim Hollebeek (Trustwave), Tyler Myers (GoDaddy), Virginia Fournier (Apple), Wayne Thayer (GoDaddy)
Ballot 166 – Clarification of Membership Requirements
April 4, 2016 by Ben WilsonVoting on Ballot 166 (Membership Update) has now closed. The results are as follows: From the CAs, we received 18 YES votes, zero NO votes and zero Abstentions From the Browsers, we received 3 YES votes, zero NO votes and zero Abstentions. Therefore the ballot passes. Full ballot results can be found here: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Ballot 166: Clarification of Membership Requirements The following motion has been proposed by Dean Coclin of Symantec and endorsed by Gerv Markham of Mozilla and Kirk Hall of Trend Micro:
April 4, 2016 by Ben WilsonVoting on Ballot 166 (Membership Update) has now closed. The results are as follows: From the CAs, we received 18 YES votes, zero NO votes and zero Abstentions From the Browsers, we received 3 YES votes, zero NO votes and zero Abstentions. Therefore the ballot passes. Full ballot results can be found here: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Ballot 166: Clarification of Membership Requirements The following motion has been proposed by Dean Coclin of Symantec and endorsed by Gerv Markham of Mozilla and Kirk Hall of Trend Micro:
Ballot 165 – Formation of Governance Review Working Group
March 31, 2016 by Ben WilsonVoting on Ballot 165, Formation of Governance Review Working Group, has now ended. The results are as follows: From the CAs, we received 19 YES votes, Zero NO votes and Zero Abstentions From the Browsers, we received 4 YES votes, Zero NO votes and Zero Abstentions Therefore the ballot passes. Ballot 165 – Formation of Governance Review Working Group The following motion has been proposed by Dean Coclin of Symantec and endorsed by Robin Alden of Comodo and Kirk Hall of Trend Micro:
March 31, 2016 by Ben WilsonVoting on Ballot 165, Formation of Governance Review Working Group, has now ended. The results are as follows: From the CAs, we received 19 YES votes, Zero NO votes and Zero Abstentions From the Browsers, we received 4 YES votes, Zero NO votes and Zero Abstentions Therefore the ballot passes. Ballot 165 – Formation of Governance Review Working Group The following motion has been proposed by Dean Coclin of Symantec and endorsed by Robin Alden of Comodo and Kirk Hall of Trend Micro:
Ballot 164 – Certificate Serial Number Entropy
March 31, 2016 by Ben WilsonVoting on Ballot 164, “Certificate Serial Number Entropy” has now closed. The results are as follow: From the CAs, we received 19 YES votes, 0 NO votes and 0 Abstentions. From the Browsers, we received 3 YES votes, 0 NO votes and 0 Abstentions. Therefore the ballot passes. Detailed ballot results can be found here: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Dean Coclin CA/B Forum Chair Ballot 164 – Certificate Serial Number Entropy This ballot has been proposed by Jacob Hoffman-Andrews of Let’s Encrypt and endorsed by Ben Wilson of DigiCert and Tim Hollebeek of Trustwave:
March 31, 2016 by Ben WilsonVoting on Ballot 164, “Certificate Serial Number Entropy” has now closed. The results are as follow: From the CAs, we received 19 YES votes, 0 NO votes and 0 Abstentions. From the Browsers, we received 3 YES votes, 0 NO votes and 0 Abstentions. Therefore the ballot passes. Detailed ballot results can be found here: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Dean Coclin CA/B Forum Chair Ballot 164 – Certificate Serial Number Entropy This ballot has been proposed by Jacob Hoffman-Andrews of Let’s Encrypt and endorsed by Ben Wilson of DigiCert and Tim Hollebeek of Trustwave:
2016-03-31 Minutes
March 31, 2016 by Ben WilsonMinutes of March 31, 2016 Attendees: Andrew Whalley (Google), Arno Fiedler, Atsushi Inaba, Ben Wilson, Bruce Morton, Jody Cloutier, Dean Coclin, Dimitris Zacharopoulos, Doug Beattie, Jacob Hoffman-Andrews, Jeremy Rowley, Josh Aas (Let’s Encrypt) Kirk Hall, Li-Chun Chen, Mads Henriksveen, Patrick Tronnier, Peter Bowen, Peter Miscovic, Rich Smith, Rick Andrews, Robin Alden, Ryan Sleevi, Tim Hollebeek, Volkan Nergiz, Wayne Thayer Antitrust Statement was read by Dean. Roll Call completed Agenda Reviewed.
March 31, 2016 by Ben WilsonMinutes of March 31, 2016 Attendees: Andrew Whalley (Google), Arno Fiedler, Atsushi Inaba, Ben Wilson, Bruce Morton, Jody Cloutier, Dean Coclin, Dimitris Zacharopoulos, Doug Beattie, Jacob Hoffman-Andrews, Jeremy Rowley, Josh Aas (Let’s Encrypt) Kirk Hall, Li-Chun Chen, Mads Henriksveen, Patrick Tronnier, Peter Bowen, Peter Miscovic, Rich Smith, Rick Andrews, Robin Alden, Ryan Sleevi, Tim Hollebeek, Volkan Nergiz, Wayne Thayer Antitrust Statement was read by Dean. Roll Call completed Agenda Reviewed.
Ballot 163 – Fix Errata in EV Guidelines 11.2.1
March 18, 2016 by Ben WilsonVoting on Ballot 163, “Fix Errata in EV Guidelines” has closed. The results are as follows: From the CAs, we received 18 YES votes, zero NO votes and 1 Abstention From the Browsers, we received 2 YES votes, zero NO votes and zero Abstentions Therefore the ballot passes. Detailed results are posted here: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Ballot 163 – Fix Errata in EV Guidelines 11.2.1 The following motion has been proposed by Li-Chun Chen of Chunghwa Telecom and endorsed by Robin Alden of Comodo and Ben Wilson of DigiCert:
March 18, 2016 by Ben WilsonVoting on Ballot 163, “Fix Errata in EV Guidelines” has closed. The results are as follows: From the CAs, we received 18 YES votes, zero NO votes and 1 Abstention From the Browsers, we received 2 YES votes, zero NO votes and zero Abstentions Therefore the ballot passes. Detailed results are posted here: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Ballot 163 – Fix Errata in EV Guidelines 11.2.1 The following motion has been proposed by Li-Chun Chen of Chunghwa Telecom and endorsed by Robin Alden of Comodo and Ben Wilson of DigiCert:
Ballot 162 – Sunset of Exceptions
March 16, 2016 by Ben WilsonVoting on Ballot 162 closed on 16 March 2016. The results are as follows: From the CAs, there were 19 YES votes, 0 NO votes and 5 Abstentions From the Browsers, there were 4 YES votes, 0 NO votes and 0 Abstentions. Therefore the ballot passes. Detailed results can be found on the ballot tracker: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Ballot 162 – Sunset of Exceptions The following motion has been proposed by Ryan Sleevi of Google and endorsed by Richard Barnes of Mozilla and Jeremy Rowley of DigiCert.
March 16, 2016 by Ben WilsonVoting on Ballot 162 closed on 16 March 2016. The results are as follows: From the CAs, there were 19 YES votes, 0 NO votes and 5 Abstentions From the Browsers, there were 4 YES votes, 0 NO votes and 0 Abstentions. Therefore the ballot passes. Detailed results can be found on the ballot tracker: https://docs.google.com/spreadsheets/d/1FBsMZjlzyvK3mFR1u4qMqvZwlI86yJ-v0am1pCBo8uI/edit#gid=4 Ballot 162 – Sunset of Exceptions The following motion has been proposed by Ryan Sleevi of Google and endorsed by Richard Barnes of Mozilla and Jeremy Rowley of DigiCert.
Minutes of the F2F 37 Meeting in Scottsdale, Arizona, 16-18 February 2016
February 17, 2016 by Ben WilsonDay 1 – Wednesday, February 17Attendance: https://public.etherpad-mozilla.org/p/cabf-scottsdale/timeslider#690 Browser News Google Note Taker: Bruce Chrome 48 shipped dev tools security panel, connection tab is going away and will go to developer tools. Chrome 49 deprecating the key gen tag and ability to install client certificates will be going away. Note that client certificates are incompatible for HTTP/2 or connection multiplexing. An alternative for client certificates would be the FIDO standards. Expect CT will be launched as the preliminary for MUST CT.
February 17, 2016 by Ben WilsonDay 1 – Wednesday, February 17Attendance: https://public.etherpad-mozilla.org/p/cabf-scottsdale/timeslider#690 Browser News Google Note Taker: Bruce Chrome 48 shipped dev tools security panel, connection tab is going away and will go to developer tools. Chrome 49 deprecating the key gen tag and ability to install client certificates will be going away. Note that client certificates are incompatible for HTTP/2 or connection multiplexing. An alternative for client certificates would be the FIDO standards. Expect CT will be launched as the preliminary for MUST CT.