CA/Browser Forum posts
Posts by author Ben Wilson
CA/Browser Forum Releases Code Signing Baseline Requirements Public Comment Draft
August 25, 2014 by Ben WilsonIn 2013, the CA/Browser Forum voted to create a Code Signing Working Group whose sole purpose was to come up with a set of Baseline Requirements for the issuance of Code Signing Certificates. The result of that effort is the: Baseline Requirements for Code Signing Certificates, Public Comment Draft (doc) Baseline Requirements for Code Signing Certificates, Public Comment Draft (pdf) Once approved by the CA/B Forum and subsequent audit standards are created, all Certificate Authorities will be obligated to follow these Requirements when issuing and managing code signing certificates.
August 25, 2014 by Ben WilsonIn 2013, the CA/Browser Forum voted to create a Code Signing Working Group whose sole purpose was to come up with a set of Baseline Requirements for the issuance of Code Signing Certificates. The result of that effort is the: Baseline Requirements for Code Signing Certificates, Public Comment Draft (doc) Baseline Requirements for Code Signing Certificates, Public Comment Draft (pdf) Once approved by the CA/B Forum and subsequent audit standards are created, all Certificate Authorities will be obligated to follow these Requirements when issuing and managing code signing certificates.
2014-08-21 Minutes
August 21, 2014 by Ben WilsonNotes of Teleconference – CA/B Forum 21 Aug 2014 Antitrust Statement: Read by Ben. Roll Call: Tim Shirley, Patrick Tronnier, Ryan Sleevi, Ben Wilson, Cecilia Kam, Robin Alden, Atilla Biler, Mads Henriksveen, Sissel Hoel, Doug Beattie, Dean Coclin, Tim Hollebeek, Jeremy Rowley, Wayne Thayer, Tom Albertson, Stephen Davidson, Kirk Hall, David Barnet, Rich Smith, Kelvin Yiu, Atsushi Inaba Agenda Review: Reviewed. Mads noted a mistaken cross-reference in agenda item 6 – it should have referred to Section 4.
August 21, 2014 by Ben WilsonNotes of Teleconference – CA/B Forum 21 Aug 2014 Antitrust Statement: Read by Ben. Roll Call: Tim Shirley, Patrick Tronnier, Ryan Sleevi, Ben Wilson, Cecilia Kam, Robin Alden, Atilla Biler, Mads Henriksveen, Sissel Hoel, Doug Beattie, Dean Coclin, Tim Hollebeek, Jeremy Rowley, Wayne Thayer, Tom Albertson, Stephen Davidson, Kirk Hall, David Barnet, Rich Smith, Kelvin Yiu, Atsushi Inaba Agenda Review: Reviewed. Mads noted a mistaken cross-reference in agenda item 6 – it should have referred to Section 4.
2014-08-07 Minutes
August 7, 2014 by Ben WilsonMinutes of CA/B Forum Teleconference, 7 August 2014 Antitrust Statement: Read by Ben. Roll Call: Atilla Biler, Patrick Tronnier, Ben Wilson, Atsushi Inaba, Eddy Nigg, Steve Roylance, Richard Wang, Kirk Hall, Jeremy Rowley, Cecilia Kam, Chris Casciano, Kelvin Yiu, Dean Coclin, Gerv Markham, Ryan Sleevi, Rick Andrews, and Tim Hollebeek Agenda Review: Reviewed. A brief recap of recent IETF meeting was included under other business. Approve Minutes:Minutes of 24 July 2014 approved as amended.
August 7, 2014 by Ben WilsonMinutes of CA/B Forum Teleconference, 7 August 2014 Antitrust Statement: Read by Ben. Roll Call: Atilla Biler, Patrick Tronnier, Ben Wilson, Atsushi Inaba, Eddy Nigg, Steve Roylance, Richard Wang, Kirk Hall, Jeremy Rowley, Cecilia Kam, Chris Casciano, Kelvin Yiu, Dean Coclin, Gerv Markham, Ryan Sleevi, Rick Andrews, and Tim Hollebeek Agenda Review: Reviewed. A brief recap of recent IETF meeting was included under other business. Approve Minutes:Minutes of 24 July 2014 approved as amended.
Ballot 129 – PSL in BR 11.1.3 (passed)
August 4, 2014 by Ben WilsonVoting on Ballot 129 closed on 4 August 2014. Voting in Favor were: DigiCert, Disig, GlobalSign, GoDaddy, Symantec, Trend Micro, Trustwave, WoSign, and Mozilla. None were opposed and none abstained. Quorum was met and Ballot 129 passed resulting in Baseline_Requirements_V1_1_9. Gerv Markham of Mozilla made the following motion, and Ben Wilson from Digicert and Rick Andrews from Symantec have endorsed it. Reason for Ballot This ballot simply clarifies how to use the “Public Suffix List” (PSL) in Section 11.
August 4, 2014 by Ben WilsonVoting on Ballot 129 closed on 4 August 2014. Voting in Favor were: DigiCert, Disig, GlobalSign, GoDaddy, Symantec, Trend Micro, Trustwave, WoSign, and Mozilla. None were opposed and none abstained. Quorum was met and Ballot 129 passed resulting in Baseline_Requirements_V1_1_9. Gerv Markham of Mozilla made the following motion, and Ben Wilson from Digicert and Rick Andrews from Symantec have endorsed it. Reason for Ballot This ballot simply clarifies how to use the “Public Suffix List” (PSL) in Section 11.
Ballot 126 – Operational Existence (passed)
July 24, 2014 by Ben WilsonVoting on Ballot 126 closed on 24 July 2014. Voting in favor were Comodo, DigiCert, Network Solutions, QuoVadis, Symantec, Trend Micro, WoSign, and Mozilla. Visa abstained. Quorum was met and Ballot 126 passed, resulting in EV SSL Certificate Guidelines Version 1.5.0. Ballot 126 – Operational Existence Jeremy Rowley of Digicert made the following motion and Cecilia Kam of Symantec and Doug Beattie of GlobalSign have endorsed it: Reason(s) for Ballot 126:** Problem**(s)** **with Current Wording A – Section 11.
July 24, 2014 by Ben WilsonVoting on Ballot 126 closed on 24 July 2014. Voting in favor were Comodo, DigiCert, Network Solutions, QuoVadis, Symantec, Trend Micro, WoSign, and Mozilla. Visa abstained. Quorum was met and Ballot 126 passed, resulting in EV SSL Certificate Guidelines Version 1.5.0. Ballot 126 – Operational Existence Jeremy Rowley of Digicert made the following motion and Cecilia Kam of Symantec and Doug Beattie of GlobalSign have endorsed it: Reason(s) for Ballot 126:** Problem**(s)** **with Current Wording A – Section 11.
2014-07-24 Minutes
July 24, 2014 by Ben WilsonNotes of Teleconference CA/Browser Forum 24 July 2014 1. Antitrust Statement: Read by Ben 2. Roll Call: Tim Shirley, Ben Wilson, Atsushi Inaba, Eddy Nigg, Dean Coclin, Stephen Davidson, Kirk Hall, Dave Barnet, Chris Casciano, Robin Alden, Gerv Markham, Geoff Keating, Ryan Sleevi, Kelvin Yiu 3. Agenda: Reviewed, and item 7 below was discussed directly after approval of last meeting’s minutes. 4. Minutes: 10 July 2014 approved. 5. Ballot review: Voting on Ballot 126 – Operational Existence closes today for ballot 126.
July 24, 2014 by Ben WilsonNotes of Teleconference CA/Browser Forum 24 July 2014 1. Antitrust Statement: Read by Ben 2. Roll Call: Tim Shirley, Ben Wilson, Atsushi Inaba, Eddy Nigg, Dean Coclin, Stephen Davidson, Kirk Hall, Dave Barnet, Chris Casciano, Robin Alden, Gerv Markham, Geoff Keating, Ryan Sleevi, Kelvin Yiu 3. Agenda: Reviewed, and item 7 below was discussed directly after approval of last meeting’s minutes. 4. Minutes: 10 July 2014 approved. 5. Ballot review: Voting on Ballot 126 – Operational Existence closes today for ballot 126.
Baseline Requirements 1.1.7 and 1.1.8 Re-Posted
July 22, 2014 by Ben WilsonA couple of formatting errors were identified in the Baseline Requirements, and versions 1.1.7 and 1.1.8 have been replaced with corrected versions. Appendix A in versions prior to version 1.1.7 had parts of RSA public key exponent requirements as superscript. It should have read: “The CA SHALL confirm that the value of the public exponent is an odd number equal to 3 or more. Additionally, the public exponent SHOULD be in the range between 216+1 and 2256-1.
July 22, 2014 by Ben WilsonA couple of formatting errors were identified in the Baseline Requirements, and versions 1.1.7 and 1.1.8 have been replaced with corrected versions. Appendix A in versions prior to version 1.1.7 had parts of RSA public key exponent requirements as superscript. It should have read: “The CA SHALL confirm that the value of the public exponent is an odd number equal to 3 or more. Additionally, the public exponent SHOULD be in the range between 216+1 and 2256-1.
Ballot 127 – Verification of Agency in EV Guidelines 11.7.2 (passes)
July 17, 2014 by Ben WilsonVoting on Ballot 127 We received Yes votes from Actalis, Buypass, DigiCert, GlobalSign, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM, Symantec, Trend Micro, Trustwave, TurkTrust, WoSign, and Mozilla. There were no Nay votes and no Abstentions. Therefore, Ballot 127 passes. Version 1.4.9 of the EV Guidelines can be found here: EV SSL Certificate Guidelines Version 1.4.9 = = = This ballot was discussed previously by the EV Working Group and by the group in attendance at the face-to-face in Eilat.
July 17, 2014 by Ben WilsonVoting on Ballot 127 We received Yes votes from Actalis, Buypass, DigiCert, GlobalSign, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM, Symantec, Trend Micro, Trustwave, TurkTrust, WoSign, and Mozilla. There were no Nay votes and no Abstentions. Therefore, Ballot 127 passes. Version 1.4.9 of the EV Guidelines can be found here: EV SSL Certificate Guidelines Version 1.4.9 = = = This ballot was discussed previously by the EV Working Group and by the group in attendance at the face-to-face in Eilat.
2014-07-10 Minutes
July 10, 2014 by Ben WilsonMinutes of Teleconference held Thursday, 10 July 2014 Antitrust Statement: Read by Ben. Roll Call: Tim Hollebeek, Doug Beattie, Patrick Tronnier , Atsushi Inaba, Ben Wilson, Tim Shirley, Chris Casciano, Mads Henriksveen, Kirk Hall, Cecilia Kam, Dean Coclin, Jeremy Rowley, Wayne Thayer, Kelvin Yiu, Moudrick Dadashov, Conny Enke, Dave Barnet, Robin Alden, Ryan Sleevi Agenda Review: Reviewed. Approve Minutes:Minutes of 26 June 2014 and the summary of the face-to-face meeting were approved.
July 10, 2014 by Ben WilsonMinutes of Teleconference held Thursday, 10 July 2014 Antitrust Statement: Read by Ben. Roll Call: Tim Hollebeek, Doug Beattie, Patrick Tronnier , Atsushi Inaba, Ben Wilson, Tim Shirley, Chris Casciano, Mads Henriksveen, Kirk Hall, Cecilia Kam, Dean Coclin, Jeremy Rowley, Wayne Thayer, Kelvin Yiu, Moudrick Dadashov, Conny Enke, Dave Barnet, Robin Alden, Ryan Sleevi Agenda Review: Reviewed. Approve Minutes:Minutes of 26 June 2014 and the summary of the face-to-face meeting were approved.