CA/Browser Forum posts
Ballot FORUM-13: Correction to Code-Signing Working Group Charter
April 7, 2020 by Jos PurvisThe voting period for Ballot FORUM-13 has ended and the Ballot has Passed. Here are the results: Voting by Certificate Issuers – 16 votes total 16 CAs voted in favor: Entrust Datacard, eMudhra, DigiCert, Certigna, Certum, Sectigo, Trustcor, SecureTrust, HARICA, Camerfirma, Actalis, Disig, SwissSign, GoDaddy, GDCA, Chungwa Telecom Voting by Certificate Consumers – 3 votes total Three Certificate Consumers voted in favor: Microsoft, Mozilla, 360 Therefore, the ballot Passes. The following ballot is proposed by Dean Coclin of DigiCert and has been endorsed by Robin Alden (Sectigo) and Mike Reilly (Microsoft).
April 7, 2020 by Jos PurvisThe voting period for Ballot FORUM-13 has ended and the Ballot has Passed. Here are the results: Voting by Certificate Issuers – 16 votes total 16 CAs voted in favor: Entrust Datacard, eMudhra, DigiCert, Certigna, Certum, Sectigo, Trustcor, SecureTrust, HARICA, Camerfirma, Actalis, Disig, SwissSign, GoDaddy, GDCA, Chungwa Telecom Voting by Certificate Consumers – 3 votes total Three Certificate Consumers voted in favor: Microsoft, Mozilla, 360 Therefore, the ballot Passes. The following ballot is proposed by Dean Coclin of DigiCert and has been endorsed by Robin Alden (Sectigo) and Mike Reilly (Microsoft).
Ballot SC26v2: Pandoc-Friendly Markdown Formatting Changes
March 30, 2020 by Wayne ThayerThe voting period for Ballot SC26v2 has ended and the Ballot has Passed. Here are the results: Voting by Certificate Issuers – 16 votes total including abstentions – 16 Yes votes: Buypass, Certum (Asseco), D-TRUST, DigiCert, Entrust Datacard, Firmaprofesional, GDCA, GlobalSign, GoDaddy, HARICA, Izenpe, Kamu SM, SSL.com, SwissSign, TrustCor, SecureTrust (former Trustwave) – 0 No votes: – 0 Abstain: 100% of voting Certificate Issuers voted in favor. Voting by Certificate Consumers – 5 votes total including abstentions – 5 Yes votes: Apple, Cisco, Google, Microsoft, Mozilla – 0 No votes: – 0 Abstain:
March 30, 2020 by Wayne ThayerThe voting period for Ballot SC26v2 has ended and the Ballot has Passed. Here are the results: Voting by Certificate Issuers – 16 votes total including abstentions – 16 Yes votes: Buypass, Certum (Asseco), D-TRUST, DigiCert, Entrust Datacard, Firmaprofesional, GDCA, GlobalSign, GoDaddy, HARICA, Izenpe, Kamu SM, SSL.com, SwissSign, TrustCor, SecureTrust (former Trustwave) – 0 No votes: – 0 Abstain: 100% of voting Certificate Issuers voted in favor. Voting by Certificate Consumers – 5 votes total including abstentions – 5 Yes votes: Apple, Cisco, Google, Microsoft, Mozilla – 0 No votes: – 0 Abstain:
Ballot SC20: System Configuration Management
March 23, 2020 by Ben WilsonThis ballot failed. Purpose of Ballot Section 1(h) of the Network and Certification Systems Security Requirements provides that CAs shall: Review configurations of Issuing Systems, Certificate Management Systems, Security Support Systems, and Front-End / Internal-Support Systems on at least a weekly basis to determine whether any changes violated the CA’s security policies; In relation to this requirement the WebTrust/PKI Assurance Task Force found and recommended that: Section 1h requires a weekly review of system configurations (…).
March 23, 2020 by Ben WilsonThis ballot failed. Purpose of Ballot Section 1(h) of the Network and Certification Systems Security Requirements provides that CAs shall: Review configurations of Issuing Systems, Certificate Management Systems, Security Support Systems, and Front-End / Internal-Support Systems on at least a weekly basis to determine whether any changes violated the CA’s security policies; In relation to this requirement the WebTrust/PKI Assurance Task Force found and recommended that: Section 1h requires a weekly review of system configurations (…).
2020-03-05 Minutes of the Server Certificate Working Group
March 20, 2020 by Jos PurvisAttendees (in alphabetical order) Adam Clark (Visa), Bruce Morton (Entrust Datacard), Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Eva Vansteenberge (GlobalSign), Inaba Atsushi (GlobalSign), India Donald (US Federal PKI Management Authority), Janet Hines (SecureTrust), Joanna Fox (GoDaddy), Kirk Hall (Entrust Datacard), Li-Chun Chen (Chunghwa Telecom), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Peter Miskovic (Disig), Rich Smith (Sectigo), Robin Alden (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Sissel Hoel (Buypass AS), Timo Schmitt (SwissSign), Tobias Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Wayne Thayer (Mozilla), Wendy Brown (US Federal PKI Management Authority).
March 20, 2020 by Jos PurvisAttendees (in alphabetical order) Adam Clark (Visa), Bruce Morton (Entrust Datacard), Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Eva Vansteenberge (GlobalSign), Inaba Atsushi (GlobalSign), India Donald (US Federal PKI Management Authority), Janet Hines (SecureTrust), Joanna Fox (GoDaddy), Kirk Hall (Entrust Datacard), Li-Chun Chen (Chunghwa Telecom), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Peter Miskovic (Disig), Rich Smith (Sectigo), Robin Alden (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Sissel Hoel (Buypass AS), Timo Schmitt (SwissSign), Tobias Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Wayne Thayer (Mozilla), Wendy Brown (US Federal PKI Management Authority).
2020-03-05 Minutes of the CA/Browser Forum Teleconference
March 20, 2020 by Jos PurvisAttendees (in alphabetical order) Adam Clark (Visa), Bruce Morton (Entrust Datacard), Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Eva Vansteenberge (GlobalSign), Inaba Atsushi (GlobalSign), India Donald (US Federal PKI Management Authority), Janet Hines (SecureTrust), Joanna Fox (GoDaddy), Kirk Hall (Entrust Datacard), Li-Chun Chen (Chunghwa Telecom), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Peter Miskovic (Disig), Rich Smith (Sectigo), Robin Alden (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Sissel Hoel (Buypass AS), Timo Schmitt (SwissSign), Tobias Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Wayne Thayer (Mozilla), Wendy Brown (US Federal PKI Management Authority).
March 20, 2020 by Jos PurvisAttendees (in alphabetical order) Adam Clark (Visa), Bruce Morton (Entrust Datacard), Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Eva Vansteenberge (GlobalSign), Inaba Atsushi (GlobalSign), India Donald (US Federal PKI Management Authority), Janet Hines (SecureTrust), Joanna Fox (GoDaddy), Kirk Hall (Entrust Datacard), Li-Chun Chen (Chunghwa Telecom), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Peter Miskovic (Disig), Rich Smith (Sectigo), Robin Alden (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Sissel Hoel (Buypass AS), Timo Schmitt (SwissSign), Tobias Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Wayne Thayer (Mozilla), Wendy Brown (US Federal PKI Management Authority).
2020-02-06 Minutes of the Server Certificate Working Group
February 21, 2020 by Jos PurvisAttendees (in alphabetical order) Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Inaba Atsushi (GlobalSign), Joanna Fox (GoDaddy), Jos Purvis (Cisco Systems), Leo Grove (SSL.com), Li-Chun Chen (Chunghwa Telecom), Mads Henriksveen (Buypass AS), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Patrick Nohe (GlobalSign), Peter Miskovic (Disig), Rich Smith (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Thanos Vrachnos (SSL.
February 21, 2020 by Jos PurvisAttendees (in alphabetical order) Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Inaba Atsushi (GlobalSign), Joanna Fox (GoDaddy), Jos Purvis (Cisco Systems), Leo Grove (SSL.com), Li-Chun Chen (Chunghwa Telecom), Mads Henriksveen (Buypass AS), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Patrick Nohe (GlobalSign), Peter Miskovic (Disig), Rich Smith (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Thanos Vrachnos (SSL.
2020-02-06 Minutes of the CA/Browser Forum Teleconference
February 21, 2020 by Jos PurvisAttendees (in alphabetical order) Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Inaba Atsushi (GlobalSign), Joanna Fox (GoDaddy), Jos Purvis (Cisco Systems), Leo Grove (SSL.com), Li-Chun Chen (Chunghwa Telecom), Mads Henriksveen (Buypass AS), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Patrick Nohe (GlobalSign), Peter Miskovic (Disig), Rich Smith (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Thanos Vrachnos (SSL.
February 21, 2020 by Jos PurvisAttendees (in alphabetical order) Clint Wilson (Apple), Corey Bonnell (SecureTrust), Chris Kemmerer (SSL.com), Curt Spann (Apple), Daniela Hood (GoDaddy), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Microsoft), Enrico Entschew (D-TRUST), Inaba Atsushi (GlobalSign), Joanna Fox (GoDaddy), Jos Purvis (Cisco Systems), Leo Grove (SSL.com), Li-Chun Chen (Chunghwa Telecom), Mads Henriksveen (Buypass AS), Michelle Coon (OATI), Mike Reilly (Microsoft), Neil Dunbar (TrustCor Systems), Niko Carpenter (SecureTrust), Patrick Nohe (GlobalSign), Peter Miskovic (Disig), Rich Smith (Sectigo), Ryan Sleevi (Google), Shelley Brewer (Digicert), Thanos Vrachnos (SSL.
Ballot SC27v3: Version 3 Onion Certificates
February 20, 2020 by Wayne ThayerBallot Results The voting period for Ballot SC27v3 has ended and the Ballot has Passed. Here are the results: Voting by Certificate Issuers – 15 votes total including abstentions – 9 Yes votes: Buypass, Camerfirma, Certum (Asseco), GDCA, HARICA, Let’s Encrypt, SHECA, SSL.com, TrustCor – 0 No votes: – 6 Abstain: Certigna (DHIMYOTIS), Entrust Datacard, Firmaprofesional, GlobalSign, SwissSign, TurkTrust 100% of voting Certificate Issuers voted in favor. Voting by Certificate Consumers – 4 votes total including abstentions – 4 Yes votes: Apple, Google, Microsoft, Mozilla – 0 No votes: – 0 Abstain:
February 20, 2020 by Wayne ThayerBallot Results The voting period for Ballot SC27v3 has ended and the Ballot has Passed. Here are the results: Voting by Certificate Issuers – 15 votes total including abstentions – 9 Yes votes: Buypass, Camerfirma, Certum (Asseco), GDCA, HARICA, Let’s Encrypt, SHECA, SSL.com, TrustCor – 0 No votes: – 6 Abstain: Certigna (DHIMYOTIS), Entrust Datacard, Firmaprofesional, GlobalSign, SwissSign, TurkTrust 100% of voting Certificate Issuers voted in favor. Voting by Certificate Consumers – 4 votes total including abstentions – 4 Yes votes: Apple, Google, Microsoft, Mozilla – 0 No votes: – 0 Abstain:
Minutes of the F2F 49 Meeting in Bratislava, Slovakia, 19-20 February 2020
February 19, 2020 by Jos PurvisMinutes of the F2F 49 Meeting in Bratislava, Slovakia, 19-20 February 2020 CA/B Forum Plenary Attendees: Peter Miškovič, Dean Coclin, Nick France, Arvid Vermote, Dimitris Zacharopoulos, Jeff Ward, Don Sheehy, Clemens Wanko, Ryan Sleevi, Tadahiko Ito, Trevoli Ponds-White, Atsushi Inaba, Chris Bailey, Kirk Hall, Jos Purvis, Clint Wilson, Mike Reilly, Karina Sirota, Arno Fiedler, Mads Henriksveen, Sissel Hoel, Vijay Kumar M, Srinivasan V, Tomas Gustavsson, Mike Kushner, Matthias Wiedenhorst, Dustin Hollenback, Doug Beattie, Wayne Thayer, Corey Bonnell, Joris Minolla, Enrico Entschew, Tobias Josefowitz, Robin Alden, Mariusz Kondratowicz, Neil Dunbar, Jeremy Rowley, Tim Callan, Leo Grove, Thanos Vrachnos, Pedro Fuentes, Anna Sikorska, Paulina Karwowska, Devon O’Brien, Eva Van Steenberge, Nikolaos Soumelidis, J.
February 19, 2020 by Jos PurvisMinutes of the F2F 49 Meeting in Bratislava, Slovakia, 19-20 February 2020 CA/B Forum Plenary Attendees: Peter Miškovič, Dean Coclin, Nick France, Arvid Vermote, Dimitris Zacharopoulos, Jeff Ward, Don Sheehy, Clemens Wanko, Ryan Sleevi, Tadahiko Ito, Trevoli Ponds-White, Atsushi Inaba, Chris Bailey, Kirk Hall, Jos Purvis, Clint Wilson, Mike Reilly, Karina Sirota, Arno Fiedler, Mads Henriksveen, Sissel Hoel, Vijay Kumar M, Srinivasan V, Tomas Gustavsson, Mike Kushner, Matthias Wiedenhorst, Dustin Hollenback, Doug Beattie, Wayne Thayer, Corey Bonnell, Joris Minolla, Enrico Entschew, Tobias Josefowitz, Robin Alden, Mariusz Kondratowicz, Neil Dunbar, Jeremy Rowley, Tim Callan, Leo Grove, Thanos Vrachnos, Pedro Fuentes, Anna Sikorska, Paulina Karwowska, Devon O’Brien, Eva Van Steenberge, Nikolaos Soumelidis, J.
Ballot FORUM-11: Creation of S/MIME Certificates Working Group
February 12, 2020 by Jos PurvisVote Results The voting period for Ballot FORUM-11 has ended and the Ballot has Failed. Here are the results: Voting by Certificate Issuers – 4 votes total including abstentions Three CAs voted in favor: DigiCert, Actalis, OISTE One CA Abstained: Trustcor Voting by Certificate Consumers – 4 votes total including abstentions Three Browsers voted against: Apple, Google, Microsoft One Browser abstained: Mozilla Therefore, the ballot fails. Ballot Text The following ballot is proposed by Tim Hollebeek of DigiCert and endorsed by Wayne Thayer of Mozilla and Adriano Santoni of Actalis.
February 12, 2020 by Jos PurvisVote Results The voting period for Ballot FORUM-11 has ended and the Ballot has Failed. Here are the results: Voting by Certificate Issuers – 4 votes total including abstentions Three CAs voted in favor: DigiCert, Actalis, OISTE One CA Abstained: Trustcor Voting by Certificate Consumers – 4 votes total including abstentions Three Browsers voted against: Apple, Google, Microsoft One Browser abstained: Mozilla Therefore, the ballot fails. Ballot Text The following ballot is proposed by Tim Hollebeek of DigiCert and endorsed by Wayne Thayer of Mozilla and Adriano Santoni of Actalis.