CA/Browser Forum

CA/Browser Forum posts

Posts by tag Ballot

    SMC-002 Confirmation Ballot for Vice Chair
    October 22, 2022 by Ben WilsonVoting Results Following a ballot, Martijn Katerbarg has been confirmed to act as Vice Chair of the S/MIME Certificate Working Group (SMCWG) for a two-year term, commencing November 1. Thank you to Mads Henriksveen of Buypass who previously served in the role of SMCWG Vice Chair as the working group developed the draft S/MIME Baseline Requirements. Ballot A single nomination has been received for Vice Chair of the SMCWG. Thus a confirmation ballot will be held.
    Ballot CSC-17: Subscriber Private Key Extension
    September 27, 2022 by Corey BonnellNotice of Review Period (Mailing list post is available here.) The IPR review period ended on October 28, 2022 and no exclusion notices were filed. The final documents, with the effective date being 2022-10-28, are available here. This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period is for a Final Maintenance Guideline (30 day Review Period). The complete Draft Guideline subject of this Review Notice is available here.
    Ballot CSC-15 – Summer 2022 Cleanup
    August 18, 2022 by Corey BonnellResults of Review Period (Mailing list post is available here.) The IPR review period ended on September 19, 2022 and no exclusion notices were filed. The final documents, with the effective date being 2022-09-19, are available here. This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period is for a Final Maintenance Guideline (30 day Review Period). The complete Draft Guideline subject of this Review Notice is available here.
    Ballot FORUM-18 – Allow Re-election of CWG Chairs and Vice Chairs
    August 3, 2022 by Ben WilsonVoting on Ballot Forum-18 has closed and the quorum was met. Results are below: CAs voting in favor: Actalis, Buypass, Comsign, DigiCert, Disig, eMudhra, Entrust, Fastly, GDCA, GlobalSign, GoDaddy, HARICA, Izenpe, JPRS, OISTE, SECOM, Sectigo, SSL.com, SwissSign, TrustCor, Visa Against: None Abstaining: None Certificate Consumers voting in Favor: Apple, Google, Mozilla, 360 Against: None Abstaining: None Therefore the ballot has PASSED. Since this ballot does not involve IPR, there will be no IPR review.
    Ballot CSC-14 – Convert Code Signing Baseline Requirements to RFC 3647 Framework
    May 26, 2022 by Corey BonnellResults of Review Period (Mailing list post is available here.) The IPR review period ended on June 25, 2022 and no exclusion notices were filed. The final documents, with the effective date being 2022-06-29, are available here. Summary of Review Ballot for Review Ballot CSC-14 – Convert Code Signing Baseline Requirements to RFC 3647 Framework Start of Review Period 26 May 2022 at 18:00 UTC End of Review Period 25 June 2022 at 18:00 UTC Members with any Essential Claim(s) to exclude must forward a written Notice to Exclude Essential Claims to the Working Group Chair (email to ) and also submit a copy to the CA/B Forum public mailing list (email to ) before the end of the Review Period.
    2022-05-05 Pre-Ballot Discussion Period for S/MIME Baseline Requirements
    May 5, 2022 by Stephen DavidsonThe S/MIME Certificate Working Group (SMCWG) of the CA/Browser Forum commences a 30-day pre-ballot discussion of the draft text of the “Baseline Requirements for the Issuance and Management of Publicly-Trusted S/MIME Certificates” (S/MIME BR). The S/MIME BR describes an integrated set of technologies, protocols, identity-proofing, lifecycle management, and auditing requirements for certificate Issuers. The draft is the culmination of work started in 2020 by a group of Certificate Issuers, Certificate Consumers (including both email user agents and email service providers), as well as other interested parties such as audit schemes and industry groups.
    Ballot CSC-13 – Update to Subscriber Key Protection Requirements
    April 6, 2022 by Corey BonnellResults of Review Period (Mailing list post is available here.) The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 2022-05-09, are available here. Results of Voting (Mailing list post is available here.) Yes No Abstain Certificate Issuers Certum (Asseco), DigiCert, eMudhra, Entrust, HARICA, Sectigo, SSL.com Certificate Consumers Microsoft The ballot has PASSED. Purpose of the Ballot Update the subscriber private key protection requirements in the Baseline Requirement for the Issuance and Management of Publicly-Trusted Code Signing Certificates v2.
    Ballot SC54: Onion Cleanup
    March 24, 2022 by Jos PurvisVoting Results Certificate Issuers 18 votes total, with no abstentions: 18 Yes votes: Amazon, Buypass, DigiCert, eMudhra, Entrust, GDCA, GlobalSign, GoDaddy, HARICA, Izenpe, JPRS, NAVER, OISTE, Sectigo, SwissSign, TrustCor, SecureTrust, Visa 0 No Votes 0 Abstentions Certificate Consumers 6 votes total, with no abstentions: 6 Yes votes: 360, Apple, Cisco, Google, Microsoft, Mozilla 0 No votes 0 Abstentions Bylaw Requirements Bylaw 2.3(f) requires: A “yes” vote by two-thirds of Certificate Issuer votes and by 50%-plus-one of Certificate Consumer votes.
    Ballot CSC-6 – Update to Subscriber Private Key Protection Requirements
    March 2, 2022 by Corey BonnellResults of Voting (Mailing list post is available here.) Yes No Abstain Certificate Issuers DigiCert, Entrust, GlobalSign, HARICA, SecureTrust Certificate Consumers Microsoft The ballot has FAILED. Purpose of the ballot Update the subscriber private key protection requirements in the Baseline Requirement for the Issuance and Management of Publicly-Trusted Code Signing Certificates v2.7. The following motion has been proposed by Ian McMillan of Microsoft, and endorsed by Tim Hollebeek of DigiCert and Bruce Morton of Entrust.
    Ballot SC51: Reduce and Clarify Audit Log and Records Archival Retention Requirements
    March 1, 2022 by Jos PurvisVoting Results Certificate Issuers 21 votes total, with no abstentions: 21 Yes votes: Amazon, Certigna (DHIMYOTIS), Certum (Asseco), Chunghwa Telecom, DigiCert, Disig, eMudhra, Entrust, Firmaprofesional, GDCA, GlobalSign, GoDaddy, HARICA, Izenpe, JPRS, Let’s Encrypt / ISRG, SSL.com, TWCA, TrustCor, SecureTrust, Visa 0 No Votes 0 Abstentions Certificate Consumers 5 votes total, with no abstentions: 5 Yes votes: Apple, Cisco, Google, Microsoft, Mozilla 0 No votes 0 Abstentions Bylaw Requirements Bylaw 2.3(f) requires: A “yes” vote by two-thirds of Certificate Issuer votes and by 50%-plus-one of Certificate Consumer votes.
    The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).