CA/Browser Forum posts
Posts by author Ben Wilson
Ballot 121 – EV Guidelines Insurance Requirements(failed)
May 7, 2014 by Ben WilsonBallot 121 – EV Guidelines Insurance Requirements Voting has closed on Ballot 121. “Yes” votes were cast by Buypass, Disig, Firmaprofesional, GlobalSign, GoDaddy, Izenpe, OpenTrust, SSC, Trend Micro, Turktrust, and WoSign. “No” votes were cast by Actalis, DigiCert, QuoVadis, Symantec, and Mozilla. Abstentions were submitted by StartCom, Visa, and Google. Therefore, Ballot 121 failed. The EV Guidelines Working Group is considering updating the EV Guidelines in a number of areas. Kirk Hall of Trend Micro hereby makes the following motion, and Moudrick Dadashov from Skaitmeninio sertifikavimo centras (SSC) and Richard Wang from WoSign have endorsed it.
May 7, 2014 by Ben WilsonBallot 121 – EV Guidelines Insurance Requirements Voting has closed on Ballot 121. “Yes” votes were cast by Buypass, Disig, Firmaprofesional, GlobalSign, GoDaddy, Izenpe, OpenTrust, SSC, Trend Micro, Turktrust, and WoSign. “No” votes were cast by Actalis, DigiCert, QuoVadis, Symantec, and Mozilla. Abstentions were submitted by StartCom, Visa, and Google. Therefore, Ballot 121 failed. The EV Guidelines Working Group is considering updating the EV Guidelines in a number of areas. Kirk Hall of Trend Micro hereby makes the following motion, and Moudrick Dadashov from Skaitmeninio sertifikavimo centras (SSC) and Richard Wang from WoSign have endorsed it.
2014-05-01 Minutes
May 1, 2014 by Ben WilsonNotes of meeting, CAB Forum, 1 May 2014, Version 2 1. Antitrust Statement 2. Agenda reviewed. 3. Present: Atsushi Inaba, Jeremy Rowley, Ben Wilson, Kirk Hall, Moudrick Dadashov, Dean Coclin, Eddy Nigg, Doug Beattie, Atilla Biler, Rick Andrews, Marcelo Silva, Wayne Thayer, Mert Ozarar, Gerv Markham, Iñigo Barreira, Cecilia Kam, Tom Albertson, Stephen Davidson 4. Minutes of 17-April-2014. The minutes were approved. 5. Ballot review: Voting on Ballot 121 EVG Insurance and Ballot 122 Verified Method of Communication close next week.
May 1, 2014 by Ben WilsonNotes of meeting, CAB Forum, 1 May 2014, Version 2 1. Antitrust Statement 2. Agenda reviewed. 3. Present: Atsushi Inaba, Jeremy Rowley, Ben Wilson, Kirk Hall, Moudrick Dadashov, Dean Coclin, Eddy Nigg, Doug Beattie, Atilla Biler, Rick Andrews, Marcelo Silva, Wayne Thayer, Mert Ozarar, Gerv Markham, Iñigo Barreira, Cecilia Kam, Tom Albertson, Stephen Davidson 4. Minutes of 17-April-2014. The minutes were approved. 5. Ballot review: Voting on Ballot 121 EVG Insurance and Ballot 122 Verified Method of Communication close next week.
Turktrust Statement on Root CA Recognition Process
April 17, 2014 by Ben WilsonAs a member of the CA/Browser Forum, we want to share our experiences with trying to overcome hurdles with trust anchor programs during recognition processes. This is not a complaint issue, we just want to discuss it and open to any kind of advice. Oracle is not a member of the Forum, yet we want to mention that we have spent a lot of efforts to complete the application form. The only answer was that we had been rejected without giving any reason.
April 17, 2014 by Ben WilsonAs a member of the CA/Browser Forum, we want to share our experiences with trying to overcome hurdles with trust anchor programs during recognition processes. This is not a complaint issue, we just want to discuss it and open to any kind of advice. Oracle is not a member of the Forum, yet we want to mention that we have spent a lot of efforts to complete the application form. The only answer was that we had been rejected without giving any reason.
2014-04-17 Minutes
April 17, 2014 by Ben WilsonNotes of meeting, CAB Forum, 17 April 2014, Version 1 1. Antitrust Statement – read by Ben. 2. Agenda reviewed. 3. Roll Call: Atsushi Inaba, Eddy Nigg, Dean Coclin, Jeremy Rowley, Ben Wilson, Marcelo Silva, Kirk Hall, Wayne Thayer, Imren Altepe, Atilla Biler, Mert Özarar, Kelvin Yiu, Robin Alden, Gerv Markham, Rick Andrews, Rich Smith, Tom Albertson, Geoff Keating 4. Approval of minutes: Minutes approved, including amendment suggested by Jeremy Rowley, as circulated.
April 17, 2014 by Ben WilsonNotes of meeting, CAB Forum, 17 April 2014, Version 1 1. Antitrust Statement – read by Ben. 2. Agenda reviewed. 3. Roll Call: Atsushi Inaba, Eddy Nigg, Dean Coclin, Jeremy Rowley, Ben Wilson, Marcelo Silva, Kirk Hall, Wayne Thayer, Imren Altepe, Atilla Biler, Mert Özarar, Kelvin Yiu, Robin Alden, Gerv Markham, Rick Andrews, Rich Smith, Tom Albertson, Geoff Keating 4. Approval of minutes: Minutes approved, including amendment suggested by Jeremy Rowley, as circulated.
WebTrust Releases New Audit Criteria for Extended Validation and Baseline Requirements
April 5, 2014 by Ben WilsonOn April 3, 2014, the WebTrust® Task Force of the American Institute of CPAs (AICPA) and Chartered Professional Accountants Canada (CPA Canada) released three new audit criteria documents to the CA/Browser Forum and others for review and/or implementation. These documents are part of the WebTrust Program for Certification Authorities and are based on the CA/Browser Forum Guidelines. The Trust Services Principles and Criteria for Certification Authorities – Extended Validation SSL – Version 1.
April 5, 2014 by Ben WilsonOn April 3, 2014, the WebTrust® Task Force of the American Institute of CPAs (AICPA) and Chartered Professional Accountants Canada (CPA Canada) released three new audit criteria documents to the CA/Browser Forum and others for review and/or implementation. These documents are part of the WebTrust Program for Certification Authorities and are based on the CA/Browser Forum Guidelines. The Trust Services Principles and Criteria for Certification Authorities – Extended Validation SSL – Version 1.
Ballot 112 – Replace Definition of “Internal Server Name” with “Internal Name”(passed)
April 3, 2014 by Ben WilsonBallot 112 – Replace Definition of “Internal Server Name” with “Internal Name” Votes in Favor: ANF, Buypass, Comodo, DigiCert, Disig, FirmaProfesional, GlobalSign, GoDaddy, Logius PKIoverheid, QuoVadis, Sertifitseerimiskeskus, SSC, StartCom, SwissSign, Symantec,Trend Micro, Trustis, TURKTRUST, TAIWAN-CA, WoSign, Mozilla and Google No abstentions or nay votes. Ballot passed. The current definition of Internal Server Name is ambiguous. It reads, “A Server Name (which may or may not include an Unregistered Domain Name) that is not resolvable using the public DNS.
April 3, 2014 by Ben WilsonBallot 112 – Replace Definition of “Internal Server Name” with “Internal Name” Votes in Favor: ANF, Buypass, Comodo, DigiCert, Disig, FirmaProfesional, GlobalSign, GoDaddy, Logius PKIoverheid, QuoVadis, Sertifitseerimiskeskus, SSC, StartCom, SwissSign, Symantec,Trend Micro, Trustis, TURKTRUST, TAIWAN-CA, WoSign, Mozilla and Google No abstentions or nay votes. Ballot passed. The current definition of Internal Server Name is ambiguous. It reads, “A Server Name (which may or may not include an Unregistered Domain Name) that is not resolvable using the public DNS.
2014-04-03 Minutes
April 3, 2014 by Ben WilsonMinutes of 3 April 2014 1. Antitrust Statement – read by Dean. 2. Agenda reviewed. Eddy would also like to discuss next meeting issues. 3. Present: Dean Coclin, Dave Barnet, Jeremy Rowley, Ben Wilson, Mads Henriksveen, Sissel Hoel, Phill Hallam-Baker, Atsushi Inaba, Ryan Sleevi, Cornelia Enke, Eddy Nigg, Wayne Thayer, Imren Altepe, Robin Alden, Gerv Markham, Moudrick Dadashov, Rick Andrews, Rich Smith, and Stephen Davidson 4. Minutes of 20-Mar-2014. Eddy was going to follow up with ARX.
April 3, 2014 by Ben WilsonMinutes of 3 April 2014 1. Antitrust Statement – read by Dean. 2. Agenda reviewed. Eddy would also like to discuss next meeting issues. 3. Present: Dean Coclin, Dave Barnet, Jeremy Rowley, Ben Wilson, Mads Henriksveen, Sissel Hoel, Phill Hallam-Baker, Atsushi Inaba, Ryan Sleevi, Cornelia Enke, Eddy Nigg, Wayne Thayer, Imren Altepe, Robin Alden, Gerv Markham, Moudrick Dadashov, Rick Andrews, Rich Smith, and Stephen Davidson 4. Minutes of 20-Mar-2014. Eddy was going to follow up with ARX.
CA/Browser Forum Revises Bylaws for Associate Members
March 25, 2014 by Ben WilsonCA/Browser Forum Revises Bylaws for Associate Members On March 25, 2014, the CA/Browser Forum adopted version 1.1 of its bylaws to recognize its long-standing relationships, industry liaisons, and involvement of other organizations in the Forum’s activities. These have included the AICPA/CICA WebTrust Task Force, the European Telecommunications Standards Institute, and several other organizations. A copy of these new bylaws is now posted on the Bylaws page of the Forum’s site.
March 25, 2014 by Ben WilsonCA/Browser Forum Revises Bylaws for Associate Members On March 25, 2014, the CA/Browser Forum adopted version 1.1 of its bylaws to recognize its long-standing relationships, industry liaisons, and involvement of other organizations in the Forum’s activities. These have included the AICPA/CICA WebTrust Task Force, the European Telecommunications Standards Institute, and several other organizations. A copy of these new bylaws is now posted on the Bylaws page of the Forum’s site.
Ballot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5(passed)
March 24, 2014 by Ben WilsonBallot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5 Yea: ANF, Certinomis, Comodo, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Google, Microsoft, and Mozilla. Nay: None Abstain: None Result: Ballot passed Rob Stradling of Comodo made the following motion, and Ben Wilson from DigiCert and Chema López González from AC Firmaprofesional S.A. have endorsed it. The EV Guidelines require certificates to include the jurisdiction where the Subject has registered or incorporated.
March 24, 2014 by Ben WilsonBallot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5 Yea: ANF, Certinomis, Comodo, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Google, Microsoft, and Mozilla. Nay: None Abstain: None Result: Ballot passed Rob Stradling of Comodo made the following motion, and Ben Wilson from DigiCert and Chema López González from AC Firmaprofesional S.A. have endorsed it. The EV Guidelines require certificates to include the jurisdiction where the Subject has registered or incorporated.
Ballot 117 – EV Code Signing Guidelines Corrections(passed)
March 24, 2014 by Ben WilsonBallot 117 – EV Code Signing Guidelines Corrections Yea: ANF, Certinomis, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Microsoft, and Mozilla. Nay: Comodo, Network Solutions, and Google. Abstain: Buypass Results: Ballot passed Updated version is posted here on the EV Code Signing page. Jeremy Rowley of DigiCert made the following motion, and Iñigo Barreira of Izenpe and Rick Andrews of Symantec endorsed it.
March 24, 2014 by Ben WilsonBallot 117 – EV Code Signing Guidelines Corrections Yea: ANF, Certinomis, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Microsoft, and Mozilla. Nay: Comodo, Network Solutions, and Google. Abstain: Buypass Results: Ballot passed Updated version is posted here on the EV Code Signing page. Jeremy Rowley of DigiCert made the following motion, and Iñigo Barreira of Izenpe and Rick Andrews of Symantec endorsed it.