CA/Browser Forum posts
Posts by author Wayne Thayer
2025-11-20 Minutes of the Server Certificate Working Group
November 20, 2025 by Wayne ThayerDimitris read the note well. Meeting minutes for November 6th were approved. Dimitris provided the current ballot status (as indicated in agenda). The status for ballots under consideration was provided by various members:
November 20, 2025 by Wayne ThayerDimitris read the note well. Meeting minutes for November 6th were approved. Dimitris provided the current ballot status (as indicated in agenda). The status for ballots under consideration was provided by various members:
Ballot SC-090: Gradually sunset all remaining email-based, phone-based, and ‘crossover’ validation methods from Sections 3.2.2.4 and 3.2.2.5
November 20, 2025 by Wayne ThayerVoting Results Certificate Issuers 27 votes in total:
November 20, 2025 by Wayne ThayerVoting Results Certificate Issuers 27 votes in total:
Ballot SC-091: Sunset 3.2.2.5.3 Reverse Address Lookup Validation, proposal of new DNS-based validation using Persistent DCV TXT Record for IP addresses
November 12, 2025 by Wayne ThayerVoting Results Certificate Issuers 24 votes in total:
November 12, 2025 by Wayne ThayerVoting Results Certificate Issuers 24 votes in total:
Ballot SC-086v3: Sunset the Inclusion of IP Reverse Address Domain Names
November 10, 2025 by Wayne ThayerVoting Results Certificate Issuers 26 votes in total:
November 10, 2025 by Wayne ThayerVoting Results Certificate Issuers 26 votes in total:
2025-11-06 Minutes of the Server Certificate Working Group
November 6, 2025 by Wayne ThayerBegin Recording - Roll Call (as noted) Read note-well. Note well read by Dimitris Review of Agenda. Agenda reviewed, no changes Minutes approval October 16, 2025, F2F#66 (Draft minutes have not been distributed yet). Nothing to review yet. Will be reviewed at future meeting. Membership applications Ronald Koorn (Interested Party, individual). Approved Saudi Data and Artificial Intelligence Authority (SDAIA), previously known as National Center for Digital Certification (NCDC) (Root Certificate Issuer). Question: Is this a meaningful transfer of key material and should this be reviewed again? Answer: No, this is not what happened. It’s a reorg within the Saudi government. The root is trusted by Microsoft and CCADB shows the root is now listed as SDAIA. Membership approved.
November 6, 2025 by Wayne ThayerBegin Recording - Roll Call (as noted) Read note-well. Note well read by Dimitris Review of Agenda. Agenda reviewed, no changes Minutes approval October 16, 2025, F2F#66 (Draft minutes have not been distributed yet). Nothing to review yet. Will be reviewed at future meeting. Membership applications Ronald Koorn (Interested Party, individual). Approved Saudi Data and Artificial Intelligence Authority (SDAIA), previously known as National Center for Digital Certification (NCDC) (Root Certificate Issuer). Question: Is this a meaningful transfer of key material and should this be reviewed again? Answer: No, this is not what happened. It’s a reorg within the Saudi government. The root is trusted by Microsoft and CCADB shows the root is now listed as SDAIA. Membership approved.
Ballot SC-088v3: DNS TXT Record with Persistent Value DCV Method
October 9, 2025 by Wayne ThayerBallot SC-088v3: DNS TXT Record with Persistent Value DCV MethodVoting Results Certificate Issuers 26 votes in total:
October 9, 2025 by Wayne ThayerBallot SC-088v3: DNS TXT Record with Persistent Value DCV MethodVoting Results Certificate Issuers 26 votes in total:
2025-09-25 Minutes of the Server Certificate Working Group
September 25, 2025 by Wayne ThayerMeeting Date: 2025-09-25 Note Well: Read by Wayne Thayer during the SCWG call preceding this call. Review of Agenda: No additions or changes. Approval of Minutes: September 11, 2025 Teleconference (Draft minutes were distributed on 2025-09-11) approved. The minutes from the April 10, 2023 meeting are still pending. Action Item: Dean Coclin will resend the meeting recording to Aaron Poulsen to assist in completing the minutes. Working Group Updates Server Certificate WG (Wayne Thayer): The last meeting discussed the sunset of pre-certificate signing CAs, with the effective date moved to March 15, 2024. Validation Subcommittee (Corey Bonnell): The group discussed definitions for “Authorization Domain Name,” “Base Domain Name,” and CNAME chaining. A future ballot will be drafted to clarify these terms. The next meeting will cover IP address-based validation and F2F meeting topics. Code Signing WG (Martijn Katerbarg): Ballot CSC-31 is in discussion and will be restarted soon with minor changes. S/MIME WG (Martijn Katerbarg): The last meeting was dominated by a discussion on the use of pseudonyms in the Common Name, with differing opinions. A discussion was also held on potentially re-allowing the OU field in S/MIME certificates. NetSec WG (Clint Wilson): The group had a brief discussion on the potential use of AI as a tool for monitoring incidents, ballots, and certificate validation workflows. Clint suggested this is a broader Forum-level topic. Definitions & Glossary WG (Tim Hollebeek): Work is resuming to create a standalone definitions document and resolve circular references. Ballots are being organized. Forum Infrastructure WG (Ben Wilson): The group discussed GitHub governance, including the Contributor License Agreement (CLA) and comment moderation. They concluded that these are policy decisions for the full Forum. IPR Subcommittee (Ben Wilson): A final redlined draft of the IPR Policy v1.4 is complete and will be circulated to the public list for review. Any Other Business: Fall 2026 F2F Meeting: The host and location have been changed. The meeting will now be hosted by eMudhra in Vienna, Austria. Scott Rea from eMudhra requested that members share any known scheduling conflicts for the October 2026 timeframe.
September 25, 2025 by Wayne ThayerMeeting Date: 2025-09-25 Note Well: Read by Wayne Thayer during the SCWG call preceding this call. Review of Agenda: No additions or changes. Approval of Minutes: September 11, 2025 Teleconference (Draft minutes were distributed on 2025-09-11) approved. The minutes from the April 10, 2023 meeting are still pending. Action Item: Dean Coclin will resend the meeting recording to Aaron Poulsen to assist in completing the minutes. Working Group Updates Server Certificate WG (Wayne Thayer): The last meeting discussed the sunset of pre-certificate signing CAs, with the effective date moved to March 15, 2024. Validation Subcommittee (Corey Bonnell): The group discussed definitions for “Authorization Domain Name,” “Base Domain Name,” and CNAME chaining. A future ballot will be drafted to clarify these terms. The next meeting will cover IP address-based validation and F2F meeting topics. Code Signing WG (Martijn Katerbarg): Ballot CSC-31 is in discussion and will be restarted soon with minor changes. S/MIME WG (Martijn Katerbarg): The last meeting was dominated by a discussion on the use of pseudonyms in the Common Name, with differing opinions. A discussion was also held on potentially re-allowing the OU field in S/MIME certificates. NetSec WG (Clint Wilson): The group had a brief discussion on the potential use of AI as a tool for monitoring incidents, ballots, and certificate validation workflows. Clint suggested this is a broader Forum-level topic. Definitions & Glossary WG (Tim Hollebeek): Work is resuming to create a standalone definitions document and resolve circular references. Ballots are being organized. Forum Infrastructure WG (Ben Wilson): The group discussed GitHub governance, including the Contributor License Agreement (CLA) and comment moderation. They concluded that these are policy decisions for the full Forum. IPR Subcommittee (Ben Wilson): A final redlined draft of the IPR Policy v1.4 is complete and will be circulated to the public list for review. Any Other Business: Fall 2026 F2F Meeting: The host and location have been changed. The meeting will now be hosted by eMudhra in Vienna, Austria. Scott Rea from eMudhra requested that members share any known scheduling conflicts for the October 2026 timeframe.
2025-09-11 Minutes of the Server Certificate Working Group
September 11, 2025 by Wayne ThayerMeeting Date: 2025-09-11 Note Well: Read by Dimitris Zacharopoulos. Review of Agenda: No additions or changes. Approval of Minutes: July 17, 2025 Teleconference (Draft minutes were distributed on 2025-09-01) approved.
September 11, 2025 by Wayne ThayerMeeting Date: 2025-09-11 Note Well: Read by Dimitris Zacharopoulos. Review of Agenda: No additions or changes. Approval of Minutes: July 17, 2025 Teleconference (Draft minutes were distributed on 2025-09-01) approved.
Ballot SC-092: Sunset use of Precertificate Signing CAs
September 2, 2025 by Wayne ThayerVoting Results Certificate Issuers 29 votes in total:
September 2, 2025 by Wayne ThayerVoting Results Certificate Issuers 29 votes in total:
2025-08-28 Minutes of the Server Certificate Working Group
August 28, 2025 by Wayne ThayerFinal Minutes – Server Certificate Working Group Teleconference (28 August 2025)1. Roll Call For attendance, see Item 11 below.
August 28, 2025 by Wayne ThayerFinal Minutes – Server Certificate Working Group Teleconference (28 August 2025)1. Roll Call For attendance, see Item 11 below.