CA/Browser Forum posts
Posts by tag Ballot
Ballot 83 – Adopt Network and Certificate System Security Requirements
August 3, 2012 by Ben WilsonOn Ballot 83, there were “YES” votes from nine CAs and two Browsers. There were “NO” votes from four CAs and one Browser. Three CAs abstained. Therefore, Ballot 83 passes with 69% of CAs and 66% of Browsers in favor. Ben Wilson made the following motion, and Bill Madell and Rick Andrews endorsed it: Motion begins As of 1 January 2013 (“Effective Date”), the CA/Browser Forum adopts the “Network and Certificate System Security Requirements” Ballot Draft 1 as Version 1.
August 3, 2012 by Ben WilsonOn Ballot 83, there were “YES” votes from nine CAs and two Browsers. There were “NO” votes from four CAs and one Browser. Three CAs abstained. Therefore, Ballot 83 passes with 69% of CAs and 66% of Browsers in favor. Ben Wilson made the following motion, and Bill Madell and Rick Andrews endorsed it: Motion begins As of 1 January 2013 (“Effective Date”), the CA/Browser Forum adopts the “Network and Certificate System Security Requirements” Ballot Draft 1 as Version 1.
Ballot 80 – Response for Non-Issued Certificates
August 2, 2012 by Ben WilsonBallot 80 – Response for Non-Issued Certificates (Passed) Motion Yngve Pettersen made the following motion and Ben Wilson and Carsten Dahlenkamp endorsed it: … Motion begins…. Effective 1 Feb 2013 Erratum begins Insert a new section at the end of section 13.2 of the Baseline Requirements with the following heading and text: “13.2.6 Response for non-issued certificates If the OCSP responder receives a request for status of a certificate that has not been issued, then the responder SHOULD NOT respond with a “good” status.
August 2, 2012 by Ben WilsonBallot 80 – Response for Non-Issued Certificates (Passed) Motion Yngve Pettersen made the following motion and Ben Wilson and Carsten Dahlenkamp endorsed it: … Motion begins…. Effective 1 Feb 2013 Erratum begins Insert a new section at the end of section 13.2 of the Baseline Requirements with the following heading and text: “13.2.6 Response for non-issued certificates If the OCSP responder receives a request for status of a certificate that has not been issued, then the responder SHOULD NOT respond with a “good” status.
Ballot 81 – Required Format for Amendments to Existing Standards or Requirements
August 1, 2012 by Ben WilsonThis ballot was withdrawn.
August 1, 2012 by Ben WilsonThis ballot was withdrawn.
Ballot 82 – Extend IPR Introduction Timetable
July 31, 2012 by Ben WilsonBallot 82 – Extend IPR Introduction Timetable (Rejected) Motion John Espinoza made the following motion and Tim Moses and Jeremy Rowley endorsed it: … Motion begins…. The CAB Forum hereby suspends the IPR Agreement and Policy from going into effect on August 1, 2012, as currently scheduled. Such suspension will endure until such time as the CAB Forum’s governance revisions are complete. Completion of the CAB Forum’s governance revisions will be deemed to have occurred in the event of a final, formal vote under the normal voting procedures of the CAB Forum then in effect where such vote concludes in the approval of a new Guideline for organization governance or other form of organization governance reform agreement.
July 31, 2012 by Ben WilsonBallot 82 – Extend IPR Introduction Timetable (Rejected) Motion John Espinoza made the following motion and Tim Moses and Jeremy Rowley endorsed it: … Motion begins…. The CAB Forum hereby suspends the IPR Agreement and Policy from going into effect on August 1, 2012, as currently scheduled. Such suspension will endure until such time as the CAB Forum’s governance revisions are complete. Completion of the CAB Forum’s governance revisions will be deemed to have occurred in the event of a final, formal vote under the normal voting procedures of the CAB Forum then in effect where such vote concludes in the approval of a new Guideline for organization governance or other form of organization governance reform agreement.
Ballot 79 – Mailing List Usage
July 25, 2012 by Ben WilsonBallot 79 – Mailing List Usage (Passed) Gervase Markham made the following motion and Chris Palmer and Eddy Nigg endorsed it: Wishing to establish guidelines for the use of the new public mailing list, … Motion begins…. Effective immediately, the Forum resolves that: Draft and final agenda for Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the public list. Draft minutes of Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the private list to allow members to make sure they are being correctly reported.
July 25, 2012 by Ben WilsonBallot 79 – Mailing List Usage (Passed) Gervase Markham made the following motion and Chris Palmer and Eddy Nigg endorsed it: Wishing to establish guidelines for the use of the new public mailing list, … Motion begins…. Effective immediately, the Forum resolves that: Draft and final agenda for Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the public list. Draft minutes of Forum meetings (both virtual and in-person, and including any sub-groups or committees) will be posted to the private list to allow members to make sure they are being correctly reported.
Ballot 78 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements
June 15, 2012 by Ben WilsonBallot 78 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements (Passed Unanimously) Motion Jeremy Rowley made the following motion, and Dean Coclin and Richard Smith endorsed it: … Motion begins…. Effective immediately. Erratum begins A. Replace the definition of “Domain Authorization” in Section 4 of the Baseline Requirements with the following: “Domain Authorization Document: Documentation provided by, or a CA’s documentation of a communication with, a Domain Name Registrar, the Domain Name Registrant, or the person or entity listed in WHOIS as the Domain Name Registrant (including any private, anonymous, or proxy registration service) attesting to the authority of an Applicant to request a Certificate for a specific Domain Namespace.
June 15, 2012 by Ben WilsonBallot 78 – Updates to Domain and IP Validation, High Risk Requests, and Data Source in the Baseline Requirements (Passed Unanimously) Motion Jeremy Rowley made the following motion, and Dean Coclin and Richard Smith endorsed it: … Motion begins…. Effective immediately. Erratum begins A. Replace the definition of “Domain Authorization” in Section 4 of the Baseline Requirements with the following: “Domain Authorization Document: Documentation provided by, or a CA’s documentation of a communication with, a Domain Name Registrar, the Domain Name Registrant, or the person or entity listed in WHOIS as the Domain Name Registrant (including any private, anonymous, or proxy registration service) attesting to the authority of an Applicant to request a Certificate for a specific Domain Namespace.
Ballot 76 – Public Review of Network Security Controls
June 12, 2012 by Ben WilsonBallot 76 – Public Review of Network Security Controls (Passed) Motion Ben Wilson made the following motion, and Eddy Nigg and Gerv Markham endorsed it: Motion begins Members of the CAB Forum have drafted Network Security Requirements, dated May 14,2012, and setting a baseline level of network security for all certification authorities that operate or manage a root certificate embedded as a trust anchor in publicly distributed browser software. The document is available for review here:
June 12, 2012 by Ben WilsonBallot 76 – Public Review of Network Security Controls (Passed) Motion Ben Wilson made the following motion, and Eddy Nigg and Gerv Markham endorsed it: Motion begins Members of the CAB Forum have drafted Network Security Requirements, dated May 14,2012, and setting a baseline level of network security for all certification authorities that operate or manage a root certificate embedded as a trust anchor in publicly distributed browser software. The document is available for review here:
Ballot 75 – NameConstraints Criticality Flag
June 8, 2012 by Ben WilsonBallot 75 – NameConstraints Criticality Flag (Passed) Motion Kathleen Wilson made the following motion, and Steve Roylance and Adam Langley endorsed it. Motion begins Effective immediately Erratum begins Delete the following text from the “Subordinate CA Certificate” section of both the Baseline Requirements Appendix B and EV Guidelines Appendix B: “All other fields and extensions MUST be set in accordance to RFC 5280.” AND replace it with the following: “F. nameConstraints (optional).
June 8, 2012 by Ben WilsonBallot 75 – NameConstraints Criticality Flag (Passed) Motion Kathleen Wilson made the following motion, and Steve Roylance and Adam Langley endorsed it. Motion begins Effective immediately Erratum begins Delete the following text from the “Subordinate CA Certificate” section of both the Baseline Requirements Appendix B and EV Guidelines Appendix B: “All other fields and extensions MUST be set in accordance to RFC 5280.” AND replace it with the following: “F. nameConstraints (optional).