CA/Browser Forum posts
Posts by tag Ballot
Ballot SMC08: Deprecate Legacy Generation Profiles and Minor Updates
July 15, 2024 by Stephen DavidsonBallot SMC08: Deprecate Legacy Generation Profiles and Minor Updates Summary: The S/MIME Baseline Requirements include a set of Legacy profiles designed to ease the transition into an audited framework, with the expectation that those Legacy profiles would be deprecated. This ballot sets a date by which issuance of certificates following the Legacy generation profiles must cease. It also includes the following minor updates: Pins the domain validation procedures to v 2.
July 15, 2024 by Stephen DavidsonBallot SMC08: Deprecate Legacy Generation Profiles and Minor Updates Summary: The S/MIME Baseline Requirements include a set of Legacy profiles designed to ease the transition into an audited framework, with the expectation that those Legacy profiles would be deprecated. This ballot sets a date by which issuance of certificates following the Legacy generation profiles must cease. It also includes the following minor updates: Pins the domain validation procedures to v 2.
Ballots CSC-25 and CSC-26
July 1, 2024 by Corey BonnellNOTICE OF REVIEW PERIOD CSC-25 This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this Review Notice is available here. Summary of Review Ballot for Review: Ballot CSC-25 Start of Review Period: July 1st, 2024 at 2:00 PM UTC End of Review Period: August 1, 2024 at 2:00 PM UTC
July 1, 2024 by Corey BonnellNOTICE OF REVIEW PERIOD CSC-25 This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this Review Notice is available here. Summary of Review Ballot for Review: Ballot CSC-25 Start of Review Period: July 1st, 2024 at 2:00 PM UTC End of Review Period: August 1, 2024 at 2:00 PM UTC
Ballot SC-75 - Pre-sign linting
June 27, 2024 by Iñigo BarreiraResults of Voting Certificate Issuers 25 votes total, with no abstentions: • 25 Issuers voting YES: Actalis, Buypass, Certum (Asseco), Chunghwa Telecom, D-TRUST, DigiCert, Disig, eMudhra, Fastly, GlobalSign, GoDaddy, HARICA, IdenTrust, iTrusChina, JPRS, Kamu SM, Let’s Encrypt / ISRG, OISTE, SECOM, Sectigo, SwissSign, Telia Company, TrustAsia, TWCA, VikingCloud • 0 Issuers voting NO • 0 Issuers ABSTAIN Certificate Consumers 3 votes total, with no abstentions: • 3 Consumers voting YES: Apple, Google, Mozilla
June 27, 2024 by Iñigo BarreiraResults of Voting Certificate Issuers 25 votes total, with no abstentions: • 25 Issuers voting YES: Actalis, Buypass, Certum (Asseco), Chunghwa Telecom, D-TRUST, DigiCert, Disig, eMudhra, Fastly, GlobalSign, GoDaddy, HARICA, IdenTrust, iTrusChina, JPRS, Kamu SM, Let’s Encrypt / ISRG, OISTE, SECOM, Sectigo, SwissSign, Telia Company, TrustAsia, TWCA, VikingCloud • 0 Issuers voting NO • 0 Issuers ABSTAIN Certificate Consumers 3 votes total, with no abstentions: • 3 Consumers voting YES: Apple, Google, Mozilla
Ballot SC-73: Compromised and weak keys
June 7, 2024 by Iñigo BarreiraVoting Results Certificate Issuers 23 votes total, with no abstentions: 23 Issuers voting YES: Actalis, Certum (Asseco), CFCA, CommScope, D-TRUST, Disig, Entrust, Fastly, GDCA, GlobalSign, GoDaddy, HARICA, iTrusChina, JPRS, Let’s Encrypt / ISRG, SECOM, Sectigo, SSL.com, SwissSign, Telia Company, TrustAsia, TWCA, VikingCloud 0 Issuers voting NO 0 Issuers ABSTAIN Certificate Consumers 1 votes total, with no abstentions: 1 Consumers voting YES: Mozilla 0 Consumers voting NO 0 Consumers ABSTAIN Bylaws Requirements Bylaw 2.
June 7, 2024 by Iñigo BarreiraVoting Results Certificate Issuers 23 votes total, with no abstentions: 23 Issuers voting YES: Actalis, Certum (Asseco), CFCA, CommScope, D-TRUST, Disig, Entrust, Fastly, GDCA, GlobalSign, GoDaddy, HARICA, iTrusChina, JPRS, Let’s Encrypt / ISRG, SECOM, Sectigo, SSL.com, SwissSign, Telia Company, TrustAsia, TWCA, VikingCloud 0 Issuers voting NO 0 Issuers ABSTAIN Certificate Consumers 1 votes total, with no abstentions: 1 Consumers voting YES: Mozilla 0 Consumers voting NO 0 Consumers ABSTAIN Bylaws Requirements Bylaw 2.
Ballot CSC-24 - Timestamping Private Key Protection
May 29, 2024 by Corey BonnellResults of Voting Yes No Abstain Certificate Issuers DigiCert, Entrust, Globalsign, HARICA, IdenTrust, Sectigo Certificate Consumers There were not enough Certificate Consumer votes to pass the ballot. Therefore, the ballot FAILS. Purpose of the Ballot This ballot updates the “Baseline Requirements for the Issuance and Management of Publicly‐Trusted Code Signing Certificates“ version 3.7 in order to clarify language regarding Timestamp Authority Private Key Protection. The main goals of this ballot are to:
May 29, 2024 by Corey BonnellResults of Voting Yes No Abstain Certificate Issuers DigiCert, Entrust, Globalsign, HARICA, IdenTrust, Sectigo Certificate Consumers There were not enough Certificate Consumer votes to pass the ballot. Therefore, the ballot FAILS. Purpose of the Ballot This ballot updates the “Baseline Requirements for the Issuance and Management of Publicly‐Trusted Code Signing Certificates“ version 3.7 in order to clarify language regarding Timestamp Authority Private Key Protection. The main goals of this ballot are to:
Ballot SMC07: Align Logging Requirement and Key Escrow clarification
May 24, 2024 by Stephen DavidsonThe Intellectual Property Review (IPR) period for Ballot SMC07 (Align Logging Requirement and Key Escrow clarification) has completed. No IPR Exclusion Notices were filed, and the ballot is adopted as of July 15, 2024. The new S/MIME BR v.1.0.5 have been published to the CABF public website in accordance with the Bylaws: https://cabforum.org/uploads/CA-Browser-Forum-SMIMEBR-1.0.5.pdf IPR Review of Ballot SMC07: Align Logging Requirement and Key Escrow clarification This Review Notice is sent pursuant to Section 4.
May 24, 2024 by Stephen DavidsonThe Intellectual Property Review (IPR) period for Ballot SMC07 (Align Logging Requirement and Key Escrow clarification) has completed. No IPR Exclusion Notices were filed, and the ballot is adopted as of July 15, 2024. The new S/MIME BR v.1.0.5 have been published to the CABF public website in accordance with the Bylaws: https://cabforum.org/uploads/CA-Browser-Forum-SMIMEBR-1.0.5.pdf IPR Review of Ballot SMC07: Align Logging Requirement and Key Escrow clarification This Review Notice is sent pursuant to Section 4.
Ballot NS-003: Restructure the NCSSRs
April 9, 2024 by Clint WilsonIPR Review of Ballot NS-003: Restructure the NCSSRs This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this Review Notice is: https://cabforum.org/posts/2024/2024-05-06-NSWG-Ballot-NS-003/CA-Browser-Forum-NCSSR-2.0-redline.pdf Summary of Review Ballot for Review: Ballot NS-003: Restructure the NCSSRs Start of Review Period: 6 May 2024 18:00 UTC End of Review Period: 5 June 2024 18:00 UTC Exclusion Notices Members with any Essential Claim(s) to exclude must forward a written Notice to Exclude Essential Claims to the Working Group Chair (email to clintw at apple.
April 9, 2024 by Clint WilsonIPR Review of Ballot NS-003: Restructure the NCSSRs This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this Review Notice is: https://cabforum.org/posts/2024/2024-05-06-NSWG-Ballot-NS-003/CA-Browser-Forum-NCSSR-2.0-redline.pdf Summary of Review Ballot for Review: Ballot NS-003: Restructure the NCSSRs Start of Review Period: 6 May 2024 18:00 UTC End of Review Period: 5 June 2024 18:00 UTC Exclusion Notices Members with any Essential Claim(s) to exclude must forward a written Notice to Exclude Essential Claims to the Working Group Chair (email to clintw at apple.
Ballot CSC-23 - Marking the EV Code Signing Guidelines SUPERCEDED
March 26, 2024 by Corey BonnellThe final documents, with the effective date being 2024-03-26, are available here. Results of Voting Yes No Abstain Certificate Issuers Actalis, Asseco (Certum), DigiCert, Entrust, Globalsign, HARICA, IdenTrust, Sectigo, SSL.com Certificate Consumers Microsoft Purpose of the Ballot As agreed at the F2F#61 meeting, this is a ballot to mark the “Guidelines For The Issuance And Management Of Extended Validation Code Signing Certificates” as superceded. The following motion has been proposed by Dimitris Zacharopoulos of HARICA and endorsed by Scott Rea of eMudhra and Martijn Katerbarg of Sectigo.
March 26, 2024 by Corey BonnellThe final documents, with the effective date being 2024-03-26, are available here. Results of Voting Yes No Abstain Certificate Issuers Actalis, Asseco (Certum), DigiCert, Entrust, Globalsign, HARICA, IdenTrust, Sectigo, SSL.com Certificate Consumers Microsoft Purpose of the Ballot As agreed at the F2F#61 meeting, this is a ballot to mark the “Guidelines For The Issuance And Management Of Extended Validation Code Signing Certificates” as superceded. The following motion has been proposed by Dimitris Zacharopoulos of HARICA and endorsed by Scott Rea of eMudhra and Martijn Katerbarg of Sectigo.
Ballot SMC06: Post implementation clarification and corrections
March 26, 2024 by Stephen DavidsonThe Intellectual Property Review (IPR) period for Ballot SMC06 (Post implementation clarification and corrections) has completed. No IPR Exclusion Notices were filed, and the ballot is adopted as of May 11, 2024. The new S/MIME BR v.1.0.4 have been published to the CABF public website in accordance with the Bylaws: https://cabforum.org/uploads/CA-Browser-Forum-SMIMEBR-1.0.4.pdf IPR Review of Ballot SMC06: Post implementation clarification and corrections This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.
March 26, 2024 by Stephen DavidsonThe Intellectual Property Review (IPR) period for Ballot SMC06 (Post implementation clarification and corrections) has completed. No IPR Exclusion Notices were filed, and the ballot is adopted as of May 11, 2024. The new S/MIME BR v.1.0.4 have been published to the CABF public website in accordance with the Bylaws: https://cabforum.org/uploads/CA-Browser-Forum-SMIMEBR-1.0.4.pdf IPR Review of Ballot SMC06: Post implementation clarification and corrections This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.
Ballot SC-72: Delete except to policyQualifiers in EVGs; align with BRs by making them NOT RECOMMENDED
March 25, 2024 by Paul van BrouwershavenVoting Results Certificate Issuers 15 votes total, with no abstentions: 15 Issuers voting YES: Buypass, Certum (Asseco), DigiCert, eMudhra, Entrust, GlobalSign, GoDaddy, HARICA, Izenpe, OISTE, SECOM, Sectigo, SwissSign, TWCA, Telia Company 0 Issuers voting NO 0 Issuers ABSTAIN Certificate Consumers 2 votes total, with no abstentions: 2 Consumers voting YES: Apple, Google 0 Consumers voting NO 0 Consumers ABSTAIN Bylaws Requirements Bylaw 2.3(6) requires: In order for a ballot to be adopted by the Forum, two‐thirds (2/3) or more of the votes cast by the Voting Members in the Certificate Issuer category must be in favour of the ballot.
March 25, 2024 by Paul van BrouwershavenVoting Results Certificate Issuers 15 votes total, with no abstentions: 15 Issuers voting YES: Buypass, Certum (Asseco), DigiCert, eMudhra, Entrust, GlobalSign, GoDaddy, HARICA, Izenpe, OISTE, SECOM, Sectigo, SwissSign, TWCA, Telia Company 0 Issuers voting NO 0 Issuers ABSTAIN Certificate Consumers 2 votes total, with no abstentions: 2 Consumers voting YES: Apple, Google 0 Consumers voting NO 0 Consumers ABSTAIN Bylaws Requirements Bylaw 2.3(6) requires: In order for a ballot to be adopted by the Forum, two‐thirds (2/3) or more of the votes cast by the Voting Members in the Certificate Issuer category must be in favour of the ballot.