Because of their active involvement in various technical working groups outside the CA/Browser Forum, Members of the Forum have developed and published guidance on a variety of topics and have also collected links to helpful external resources and tools. The Resources area of this web site is where you can look for guidance on certificate use, including network and server configuration, browser capabilities, results of research and news about the industry.
BRs release version 2.1.4
What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8
This ballot adopts Multi-Perspective Issuance Corroboration (MPIC) for CAs when conducting Email Domain Control Validation (DCV) and Certification Authority Authorization (CAA) checks for S/MIME Certificates. The Ballot adopts the MPIC implementation consistent with the TLS Baseline Requirements. Acknowledging that some S/MIME CAs with no TLS operations may require additional time to deploy MPIC, the Ballot has a Compliance Date of May 15, 2025. Following that date the implementation timeline described in TLS BR section 3.2.2.9 applies. This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Ashish Dhiman (GlobalSign) and Nicolas Lidzborski (Google).
Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35