CA/Browser Forum posts
CA/Browser Forum Revises Bylaws for Associate Members
March 25, 2014 by Ben WilsonCA/Browser Forum Revises Bylaws for Associate Members On March 25, 2014, the CA/Browser Forum adopted version 1.1 of its bylaws to recognize its long-standing relationships, industry liaisons, and involvement of other organizations in the Forum’s activities. These have included the AICPA/CICA WebTrust Task Force, the European Telecommunications Standards Institute, and several other organizations. A copy of these new bylaws is now posted on the Bylaws page of the Forum’s site.
March 25, 2014 by Ben WilsonCA/Browser Forum Revises Bylaws for Associate Members On March 25, 2014, the CA/Browser Forum adopted version 1.1 of its bylaws to recognize its long-standing relationships, industry liaisons, and involvement of other organizations in the Forum’s activities. These have included the AICPA/CICA WebTrust Task Force, the European Telecommunications Standards Institute, and several other organizations. A copy of these new bylaws is now posted on the Bylaws page of the Forum’s site.
Ballot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5(passed)
March 24, 2014 by Ben WilsonBallot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5 Yea: ANF, Certinomis, Comodo, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Google, Microsoft, and Mozilla. Nay: None Abstain: None Result: Ballot passed Rob Stradling of Comodo made the following motion, and Ben Wilson from DigiCert and Chema López González from AC Firmaprofesional S.A. have endorsed it. The EV Guidelines require certificates to include the jurisdiction where the Subject has registered or incorporated. Subsection 9.2.5 of the EV Guidelines is titled, “Subject Jurisdiction of Incorporation or Registration Field”. However, the OID names provided in that section use the string “OfIncorporation”, which is overly specific and might be considered misleading, because not all business entities with EV certificates are corporations. Therefore, the string “OfIncorporation” should be deleted from these OID names.
March 24, 2014 by Ben WilsonBallot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5 Yea: ANF, Certinomis, Comodo, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Google, Microsoft, and Mozilla. Nay: None Abstain: None Result: Ballot passed Rob Stradling of Comodo made the following motion, and Ben Wilson from DigiCert and Chema López González from AC Firmaprofesional S.A. have endorsed it. The EV Guidelines require certificates to include the jurisdiction where the Subject has registered or incorporated. Subsection 9.2.5 of the EV Guidelines is titled, “Subject Jurisdiction of Incorporation or Registration Field”. However, the OID names provided in that section use the string “OfIncorporation”, which is overly specific and might be considered misleading, because not all business entities with EV certificates are corporations. Therefore, the string “OfIncorporation” should be deleted from these OID names.
Ballot 117 – EV Code Signing Guidelines Corrections(passed)
March 24, 2014 by Ben WilsonBallot 117 – EV Code Signing Guidelines Corrections Yea: ANF, Certinomis, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Microsoft, and Mozilla. Nay: Comodo, Network Solutions, and Google. Abstain: Buypass Results: Ballot passed Updated version is posted here on the EV Code Signing page. Jeremy Rowley of DigiCert made the following motion, and Iñigo Barreira of Izenpe and Rick Andrews of Symantec endorsed it.
March 24, 2014 by Ben WilsonBallot 117 – EV Code Signing Guidelines Corrections Yea: ANF, Certinomis, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Microsoft, and Mozilla. Nay: Comodo, Network Solutions, and Google. Abstain: Buypass Results: Ballot passed Updated version is posted here on the EV Code Signing page. Jeremy Rowley of DigiCert made the following motion, and Iñigo Barreira of Izenpe and Rick Andrews of Symantec endorsed it.
Ballot 116 – Bylaw Amendment for Associate Member Category(passed)
March 24, 2014 by Ben WilsonBallot 116 – Associate Member Category Yea: ANF, Certinomis, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Microsoft, and Mozilla Nay: None Abstain: None Results: Ballot passed Ben Wilson of DigiCert made the following motion, and Dean Coclin from Symantec and Ryan Sleevi from Google endorsed it: Motion Begins In order to reconcile the CA/Browser Forum’s Bylaws with its current operational practices, including the recognition of Associate Members and the use of a single IPR Agreement with Interested Parties and the absence of a Participation Agreement, the following amendments should be made to the Bylaws:
March 24, 2014 by Ben WilsonBallot 116 – Associate Member Category Yea: ANF, Certinomis, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Microsoft, and Mozilla Nay: None Abstain: None Results: Ballot passed Ben Wilson of DigiCert made the following motion, and Dean Coclin from Symantec and Ryan Sleevi from Google endorsed it: Motion Begins In order to reconcile the CA/Browser Forum’s Bylaws with its current operational practices, including the recognition of Associate Members and the use of a single IPR Agreement with Interested Parties and the absence of a Participation Agreement, the following amendments should be made to the Bylaws:
2014-03-20 Minutes
March 20, 2014 by Ben WilsonNotes of meeting, CAB Forum, 20 March 2014, Version 1 1. Antitrust Statement was read.
March 20, 2014 by Ben WilsonNotes of meeting, CAB Forum, 20 March 2014, Version 1 1. Antitrust Statement was read.
2014-03-06 Minutes
March 6, 2014 by Ben WilsonNotes of meeting, CAB Forum, 6 March 2014, Version 1 1. Present: Ben Wilson, Atsushi Inaba, Adam Clark, Ryan Sleevi, Atilla Biler, Doug Beattie, Marcelo Silva, Dean Coclin, Eddy Nigg, Kirk Hall, Wayne Thayer, Jeremy Rowley,
March 6, 2014 by Ben WilsonNotes of meeting, CAB Forum, 6 March 2014, Version 1 1. Present: Ben Wilson, Atsushi Inaba, Adam Clark, Ryan Sleevi, Atilla Biler, Doug Beattie, Marcelo Silva, Dean Coclin, Eddy Nigg, Kirk Hall, Wayne Thayer, Jeremy Rowley,
Minutes of the F2F 31 Meeting in Mountain View, California, 18-20 February 2014
February 19, 2014 by Ben WilsonMeeting 31 Minutes – Mountain View Face-to-Face The antitrust statement was read. Present: Eneli Kirme, Robin Alden, Don Sheehy, Jeremy Rowley, Ben Wilson, Arno Fielder, Doug Beattie, Wayne Thayer, Joanna Fox, Ryan Sleevi, (Ben Laurie and Eran Messeri by phone), Francisco Arias, Tomofumi Okubo, Iñigo Barreira, Tom Albertson, Sid Stamm, Stephen Davidson (by phone), Moudrick Dadashov, Cornelia Enke, Rick Andrews, Dean Coclin, Kirk Hall, Chris Bailey, Imren Altepe, Jeffrey Ward, Richard Wang, Robert Relyea, Brian Smith, (working group meeting – Cecilia Kam, Tony Penta, Wan-Teh Chang)
February 19, 2014 by Ben WilsonMeeting 31 Minutes – Mountain View Face-to-Face The antitrust statement was read. Present: Eneli Kirme, Robin Alden, Don Sheehy, Jeremy Rowley, Ben Wilson, Arno Fielder, Doug Beattie, Wayne Thayer, Joanna Fox, Ryan Sleevi, (Ben Laurie and Eran Messeri by phone), Francisco Arias, Tomofumi Okubo, Iñigo Barreira, Tom Albertson, Sid Stamm, Stephen Davidson (by phone), Moudrick Dadashov, Cornelia Enke, Rick Andrews, Dean Coclin, Kirk Hall, Chris Bailey, Imren Altepe, Jeffrey Ward, Richard Wang, Robert Relyea, Brian Smith, (working group meeting – Cecilia Kam, Tony Penta, Wan-Teh Chang)
Ballot 110 – Motion to Adopt Version 1.1 of the Bylaws(failed)
February 6, 2014 by Ben WilsonWith 6 “yes” votes from CAs (Digicert, Symantec, TrendMicro, Disig, GlobalSign, and SECOM) and 2 “no” votes from Browsers (Mozilla and Google), Ballot 110 made quorum but did not pass. On 22 January 2014, Ben Wilson of DigiCert made the following motion, endorsed by Robin Alden of Comodo and Dean Coclin of Symantec: –Motion Begins– Be it resolved that the CA / Browser Forum adopts the attached CA-Browser Forum Bylaws v. 1.1- Draft3 for Ballot 110 as its Bylaws, effective as of 6 February 2014.
February 6, 2014 by Ben WilsonWith 6 “yes” votes from CAs (Digicert, Symantec, TrendMicro, Disig, GlobalSign, and SECOM) and 2 “no” votes from Browsers (Mozilla and Google), Ballot 110 made quorum but did not pass. On 22 January 2014, Ben Wilson of DigiCert made the following motion, endorsed by Robin Alden of Comodo and Dean Coclin of Symantec: –Motion Begins– Be it resolved that the CA / Browser Forum adopts the attached CA-Browser Forum Bylaws v. 1.1- Draft3 for Ballot 110 as its Bylaws, effective as of 6 February 2014.
Ballot 114 – Improvements to the EV Definitions(passed)
January 28, 2014 by Ben WilsonVoting on Ballot 114 closed on 28 January 2014 with votes cast as follows: Yes: ANF, Buypass, CERTUM, Comodo, DigiCert, GlobalSign, Logius PKIoverheid, QuoVadis, Symantec, Trend Micro, Trustis, TURKTRUST and Mozilla. No: None. Abstain: None. Result: Ballot passes Cecilia Kam from Symantec made the following motion, and Jeremy Rowley from DigiCert and Kirk Hall from Trend Micro endorsed it. This proposal clarifies the definition of Business Entities, Private Organizations, and Incorporating Agencies. The change to Business Entity fixes the omission of non-commercial entities and clarifies that the examples are not all-encompassing. The Private Organization change helps promote EV in countries where they don’t generally use the term “Incorporating Agency”. The change in Incorporating Agency gives the guidelines a more international focus by using the term formation over incorporation and by acknowledging that businesses are generally registered, not established, with a filing.
January 28, 2014 by Ben WilsonVoting on Ballot 114 closed on 28 January 2014 with votes cast as follows: Yes: ANF, Buypass, CERTUM, Comodo, DigiCert, GlobalSign, Logius PKIoverheid, QuoVadis, Symantec, Trend Micro, Trustis, TURKTRUST and Mozilla. No: None. Abstain: None. Result: Ballot passes Cecilia Kam from Symantec made the following motion, and Jeremy Rowley from DigiCert and Kirk Hall from Trend Micro endorsed it. This proposal clarifies the definition of Business Entities, Private Organizations, and Incorporating Agencies. The change to Business Entity fixes the omission of non-commercial entities and clarifies that the examples are not all-encompassing. The Private Organization change helps promote EV in countries where they don’t generally use the term “Incorporating Agency”. The change in Incorporating Agency gives the guidelines a more international focus by using the term formation over incorporation and by acknowledging that businesses are generally registered, not established, with a filing.