Home » Baseline Requirements

Category Archives: Baseline Requirements

Ballot 146 – Convert Baseline Requirements to RFC 3647 Framework

Ballot 146 – Convert Baseline Requirements to RFC 3647 Framework Voting has closed on Ballot 146, “Convert Baseline Requirements” Among CAs, there were 18 YES votes, 1 NO vote and 2 Abstentions Among Browsers, there was 1 YES vote and 1 Abstention Therefore, the ballot passes. Here are  Version 1.3.0 and a helpful Conversion Table —————————————- The Certificate Policy Review Working ... Read More »

Ballot 129 – PSL in BR 11.1.3 (passed)

Voting on Ballot 129 closed on 4 August 2014. Voting in Favor were:  DigiCert, Disig, GlobalSign, GoDaddy, Symantec, Trend Micro, Trustwave, WoSign, and Mozilla. None were opposed and none abstained.  Quorum was met and Ballot 129 passed resulting in Baseline_Requirements_V1_1_9. Gerv Markham of Mozilla made the following motion, and Ben Wilson from Digicert and Rick Andrews from Symantec have endorsed ... Read More »

Baseline Requirements 1.1.7 and 1.1.8 Re-Posted

A couple of formatting errors were identified in the Baseline Requirements, and versions 1.1.7 and 1.1.8 have been replaced with corrected versions.  Appendix A in versions prior to version 1.1.7 had parts of RSA public key exponent requirements as superscript.  It should have read:  “The CA SHALL confirm that the value of the public exponent is an odd number equal ... Read More »

Notice of IPR Review Period for Amendments to Baseline Requirements per Ballots 112 and 120

Pursuant to Section 4.1 of the CA/Browser Forum’s IPR Policy, this is notice of the commencement of a 30-day IPR maintenance-guideline review period by which certain provisions of the IPR will become applicable to these recent changes made to the Baseline Requirements by Ballots 112 and 120. Ballot 112 replaced “Internal Server Name” with use of the term “Internal Name” ... Read More »

Ballot 124 – Business Entity Clarification (passed)

Ballot 124 – Business Entity Clarification Voting closed on June 5, 2014.  We received votes in favor from Actalis, ANF, Buypass, DigiCert, Disig, Firmaprofesional, GlobalSign, GoDaddy.com, Logius PKIoverheid, Mozilla, QuoVadis, StartCom, Symantec, Trend Micro, TURKTRUST, OpenTrust, and WoSign. There were no votes against and no abstentions. Therefore, Ballot 124 passed. The EV Guidelines Working Group identified an erroneous cross-reference in ... Read More »

Ballot 120 – Affiliate Authority to Verify Domain (passed)

Voting closed on June 5, 2014.  We received votes in favor from Actalis, ANF, Buypass, DigiCert, Disig, Firmaprofesional, GlobalSign, GoDaddy.com, Logius PKIoverheid, Mozilla, QuoVadis, StartCom, Symantec, Trend Micro, TURKTRUST, OpenTrust, and WoSign. There were no votes against and no abstentions. Therefore, Ballot 120 passed. Kirk Hall of TrendMicro made the following motion and Jeremy Rowley of DigiCert and Cecilia Kam ... Read More »

WebTrust Releases New Audit Criteria for Extended Validation and Baseline Requirements

On April 3, 2014, the WebTrust® Task Force of the American Institute of CPAs (AICPA) and Chartered Professional Accountants Canada (CPA Canada) released three new audit criteria documents to the CA/Browser Forum and others for review and/or implementation.  These documents are part of the WebTrust Program for Certification Authorities and are based on the CA/Browser Forum Guidelines. The Trust Services ... Read More »

Ballot 108 – Defining the Scope of the Baseline Requirements

Ballot 108 – Defining the Scope of the Baseline Requirements (Withdrawn) Motion Jeremy Rowley made the following motion, and Stephen Davidson and Geoff Keating endorsed it: Motion Begins Amend Section 1 of the Baseline Requirements as follows: The Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates describe a subset of the requirements that a Certification Authority must meet ... Read More »

Guidance on the Deprecation of Internal Server Names and Reserved IP Addresses

This document explains the changes to Certification Authority support for internal server names and reserved IP dddresses and the reasons behind the new rules that were introduced in the Baseline Requirements for the Issuance and Management of Publicly Trusted Certificates, Version 1.0 that took effect effect on July 1, 2012: Guidance on the Deprecation of Internal Server Names and Reserved ... Read More »