CA/Browser Forum posts
2012-07-26 Minutes
July 26, 2012 by Ben WilsonNotes of meeting CAB Forum 26 July 2012 Version 1 Present Tim Moses, Wayne Thayer, Atsushi Inaba, Brad Hill, Dean Coclin, Eddy Nigg, Bruce Morton, Geoff Keating, Rick Andrews, Renne Rodriguez, Yngve Pettersen, Jeremy Rowley, Carsten Dahlenkamp Agenda review The agenda was accepted as published. Minutes of meetings on 12 July The minutes were accepted as published. Ballots status Ballot 80 opens for voting later today. Ballot 82 closes next Tuesday.
July 26, 2012 by Ben WilsonNotes of meeting CAB Forum 26 July 2012 Version 1 Present Tim Moses, Wayne Thayer, Atsushi Inaba, Brad Hill, Dean Coclin, Eddy Nigg, Bruce Morton, Geoff Keating, Rick Andrews, Renne Rodriguez, Yngve Pettersen, Jeremy Rowley, Carsten Dahlenkamp Agenda review The agenda was accepted as published. Minutes of meetings on 12 July The minutes were accepted as published. Ballots status Ballot 80 opens for voting later today. Ballot 82 closes next Tuesday.
Ballot 79 – Mailing List Usage
July 25, 2012 by Ben WilsonBallot 79 – Mailing List Usage (Passed) Gervase Markham made the following motion and Chris Palmer and Eddy Nigg endorsed it: Wishing to establish guidelines for the use of the new public mailing list, … Motion begins…. Effective immediately, the Forum resolves that: Draft and final agenda for Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the public list. Draft minutes of Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the private list to allow members to make sure they are being correctly reported.
July 25, 2012 by Ben WilsonBallot 79 – Mailing List Usage (Passed) Gervase Markham made the following motion and Chris Palmer and Eddy Nigg endorsed it: Wishing to establish guidelines for the use of the new public mailing list, … Motion begins…. Effective immediately, the Forum resolves that: Draft and final agenda for Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the public list. Draft minutes of Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the private list to allow members to make sure they are being correctly reported.
Governance Proposals Published, Advancing Toward Adoption
July 5, 2012 by Ben WilsonDuring last week’s meeting in Norway, the CA/Browser Forum agreed to advance four governance proposal through a voting process that will result in the decision to keep the current structire in place, or to adopt one of the four new proposals. The proposals are published here for public review and comment: DigiCert Microsoft PayPal Trend Micro Please send comments to . Please note that this is a moderated mailing list normally available for posting only to CA/Browser Forum members, but posts on this topic from non-forum members will be manually approved.
July 5, 2012 by Ben WilsonDuring last week’s meeting in Norway, the CA/Browser Forum agreed to advance four governance proposal through a voting process that will result in the decision to keep the current structire in place, or to adopt one of the four new proposals. The proposals are published here for public review and comment: DigiCert Microsoft PayPal Trend Micro Please send comments to . Please note that this is a moderated mailing list normally available for posting only to CA/Browser Forum members, but posts on this topic from non-forum members will be manually approved.
Ballot 78 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements
June 15, 2012 by Ben WilsonBallot 78 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements (Passed Unanimously) Motion Jeremy Rowley made the following motion, and Dean Coclin and Richard Smith endorsed it: … Motion begins…. Effective immediately. Erratum begins A. Replace the definition of “Domain Authorization” in Section 4 of the Baseline Requirements with the following:
June 15, 2012 by Ben WilsonBallot 78 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements (Passed Unanimously) Motion Jeremy Rowley made the following motion, and Dean Coclin and Richard Smith endorsed it: … Motion begins…. Effective immediately. Erratum begins A. Replace the definition of “Domain Authorization” in Section 4 of the Baseline Requirements with the following:
Ballot 76 – Public Review of Network Security Controls
June 12, 2012 by Ben WilsonBallot 76 – Public Review of Network Security Controls (Passed) Motion Ben Wilson made the following motion, and Eddy Nigg and Gerv Markham endorsed it: Motion begins Members of the CAB Forum have drafted Network Security Requirements, dated May 14,2012, and setting a baseline level of network security for all certification authorities that operate or manage a root certificate embedded as a trust anchor in publicly distributed browser software. The document is available for review here:
June 12, 2012 by Ben WilsonBallot 76 – Public Review of Network Security Controls (Passed) Motion Ben Wilson made the following motion, and Eddy Nigg and Gerv Markham endorsed it: Motion begins Members of the CAB Forum have drafted Network Security Requirements, dated May 14,2012, and setting a baseline level of network security for all certification authorities that operate or manage a root certificate embedded as a trust anchor in publicly distributed browser software. The document is available for review here:
Ballot 75 – NameConstraints Criticality Flag
June 8, 2012 by Ben WilsonBallot 75 – NameConstraints Criticality Flag (Passed) Motion Kathleen Wilson made the following motion, and Steve Roylance and Adam Langley endorsed it. Motion begins Effective immediately
June 8, 2012 by Ben WilsonBallot 75 – NameConstraints Criticality Flag (Passed) Motion Kathleen Wilson made the following motion, and Steve Roylance and Adam Langley endorsed it. Motion begins Effective immediately
Ballot 77 – Emergency Extension of IPR Requirements
June 7, 2012 by Ben WilsonBallot 77 – Emergency Extension of IPR Requirements (Passed) Motion Jeremy Rowley made the following motion, and Kirk Hall and Robin Alden endorsed it: The Forum’s IPR Policy requires each member to sign the IPR agreement and disclose all IP assets containing an Essential Claim (as defined in the IPR) on or before June 7, 2012. A failure to comply results in the loss of forum membership. The fact that many key members have not had sufficient time to review and sign the IPR agreement will likely result in a low participation during the face-to-face in Norway and a significant delay in the discussion and adoption of on-going Forum work product.
June 7, 2012 by Ben WilsonBallot 77 – Emergency Extension of IPR Requirements (Passed) Motion Jeremy Rowley made the following motion, and Kirk Hall and Robin Alden endorsed it: The Forum’s IPR Policy requires each member to sign the IPR agreement and disclose all IP assets containing an Essential Claim (as defined in the IPR) on or before June 7, 2012. A failure to comply results in the loss of forum membership. The fact that many key members have not had sufficient time to review and sign the IPR agreement will likely result in a low participation during the face-to-face in Norway and a significant delay in the discussion and adoption of on-going Forum work product.
Ballot 74 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements
May 31, 2012 by Ben WilsonBallot 74 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements (Quorum not met) Motion Jeremy Rowley made the following motion, and Dean Coclin and Richard Smith endorsed it: … Motion begins…. Effective immediately. Erratum begins A. Replace the definition of “Domain Authorization” in Section 4 of the Baseline Requirements with the following:
May 31, 2012 by Ben WilsonBallot 74 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements (Quorum not met) Motion Jeremy Rowley made the following motion, and Dean Coclin and Richard Smith endorsed it: … Motion begins…. Effective immediately. Erratum begins A. Replace the definition of “Domain Authorization” in Section 4 of the Baseline Requirements with the following:
Ballot 72 – Reorganize EV Documents
May 29, 2012 by Ben WilsonBallot 72 – Reorganize EV Documents (Passed Unanimously) Motion Jeremy Rowley made the following motion, and Simon Labram and Rich Smith endorsed it: Motion begins The Forum adopts, with immediate effect, the document entitled “Guidelines For The Issuance And Management Of Extended Validation Certificates, Version 1.4, Draft 04” as Version 1.4 of the EV Guidelines. The Forum also adopts, with immediate effect, the document entitled “Guidelines for the Issuance and Management of Extended Validation Code Signing Certificates” as Version 1.1 of the EV Code Signing Guidelines. The documents were circulated for review on 22 Mar 2012 and discussed during the telephone conference on 5 Apr 2012.
May 29, 2012 by Ben WilsonBallot 72 – Reorganize EV Documents (Passed Unanimously) Motion Jeremy Rowley made the following motion, and Simon Labram and Rich Smith endorsed it: Motion begins The Forum adopts, with immediate effect, the document entitled “Guidelines For The Issuance And Management Of Extended Validation Certificates, Version 1.4, Draft 04” as Version 1.4 of the EV Guidelines. The Forum also adopts, with immediate effect, the document entitled “Guidelines for the Issuance and Management of Extended Validation Code Signing Certificates” as Version 1.1 of the EV Code Signing Guidelines. The documents were circulated for review on 22 Mar 2012 and discussed during the telephone conference on 5 Apr 2012.