CA/Browser Forum posts
Posts by tag Code Signing
2021-11-18 Minutes of the Code Signing Certificate Working Group
November 18, 2021 by Corey BonnellAttendees Andrea Holland, Atsushi Inaba, Bruce Morton, Chris Kemmerer, Correy Bonnell, Dimitris Zacharopoulos, Ian McMillan, Inigo Barreira, Kiran Tummala, Sebastian Schulz, Tim Hollebeek Minutes Minutes of the previous Meeting were approved Discussion regarding SC-50 from Server Working Group – Ballot is concerned with removal of 4.1.1 – Discussion is postponed until any changes are required Ballot CSC-12 – Ballot has passed, in IPR review through 3rd December Ballot CSC-6 – Effective date is set to Sep 1st 2022 based on reccuring feedback from the group
November 18, 2021 by Corey BonnellAttendees Andrea Holland, Atsushi Inaba, Bruce Morton, Chris Kemmerer, Correy Bonnell, Dimitris Zacharopoulos, Ian McMillan, Inigo Barreira, Kiran Tummala, Sebastian Schulz, Tim Hollebeek Minutes Minutes of the previous Meeting were approved Discussion regarding SC-50 from Server Working Group – Ballot is concerned with removal of 4.1.1 – Discussion is postponed until any changes are required Ballot CSC-12 – Ballot has passed, in IPR review through 3rd December Ballot CSC-6 – Effective date is set to Sep 1st 2022 based on reccuring feedback from the group
2021-11-04 Minutes of the Code Signing Certificate Working Group
November 4, 2021 by Corey BonnellAttendees Andrea Holland, Atsushi Inaba, Ben Wilson, Bruce Morton, Chris Kemmerer, Corey Bonnell, Dean Coclin, Dimitris Zacharopoulo, Ian McMillan, Inigo Barreira, Janet Hines, Joanna Fox, Martijn Katerbarg, Michael Sykes, Sebastian Schulz, Tim Crawford, Tim Hollebeek, Tomas Gustavsson Minutes Minute Taker: Martijn Anti-Trust statement Dean read the anti-trust statement Previous Minutes Minutes from October 13th and October 21st are approved. Dean will send them out to the public list SC-50 – Remove the requirements of 4.
November 4, 2021 by Corey BonnellAttendees Andrea Holland, Atsushi Inaba, Ben Wilson, Bruce Morton, Chris Kemmerer, Corey Bonnell, Dean Coclin, Dimitris Zacharopoulo, Ian McMillan, Inigo Barreira, Janet Hines, Joanna Fox, Martijn Katerbarg, Michael Sykes, Sebastian Schulz, Tim Crawford, Tim Hollebeek, Tomas Gustavsson Minutes Minute Taker: Martijn Anti-Trust statement Dean read the anti-trust statement Previous Minutes Minutes from October 13th and October 21st are approved. Dean will send them out to the public list SC-50 – Remove the requirements of 4.
Ballot CSC-12 – CRL Revocation Date Clarification
November 3, 2021 by Corey BonnellResults of IPR Review (Mailing list post is available here.) The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 2021-12-03, are available here. Results of Voting (Mailing list post is available here.) Yes No Abstain Certificate Issuers Certum (Asseco), DigiCert, Entrust, E-TUGRA, GlobalSign, HARICA, Sectigo, SSL.com Certificate Consumers Microsoft The ballot has PASSED. Purpose of the Ballot While RFC 5280, section 5.
November 3, 2021 by Corey BonnellResults of IPR Review (Mailing list post is available here.) The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 2021-12-03, are available here. Results of Voting (Mailing list post is available here.) Yes No Abstain Certificate Issuers Certum (Asseco), DigiCert, Entrust, E-TUGRA, GlobalSign, HARICA, Sectigo, SSL.com Certificate Consumers Microsoft The ballot has PASSED. Purpose of the Ballot While RFC 5280, section 5.
2021-10-21 Minutes of the Code Signing Certificate Working Group
October 21, 2021 by Corey BonnellAttendees Andrea Holland, Atushi Inaba, Bruce Morton, Dimitris Zacharopoulos, Ian McMillan, Inigo Barreira, Joanna Fox, Tim Crawford, Tim Hollebeek, Tomas Gustavsson Minutes Minute taker: Tomas Gustavsson Antitrust statement was read. Minutes from the meeting on October 7th was approved. Current Ballots Ballot CSC-11 in IPR review through November 3rd. No discussion so far. Corey has put out the ballot about invalidity date, CSC-12, about the revocation date and clarifications in the CSBRs about that.
October 21, 2021 by Corey BonnellAttendees Andrea Holland, Atushi Inaba, Bruce Morton, Dimitris Zacharopoulos, Ian McMillan, Inigo Barreira, Joanna Fox, Tim Crawford, Tim Hollebeek, Tomas Gustavsson Minutes Minute taker: Tomas Gustavsson Antitrust statement was read. Minutes from the meeting on October 7th was approved. Current Ballots Ballot CSC-11 in IPR review through November 3rd. No discussion so far. Corey has put out the ballot about invalidity date, CSC-12, about the revocation date and clarifications in the CSBRs about that.
2021-10-13 Minutes of the Code Signing Certificate Working Group
October 13, 2021 by Corey BonnellAttendees SwissSign (Adrian Mueller), Telia Company (Ali Gholami), SecureTrust (Andrea Holland), Nimbus, Member of ETSI ESI (Arno Fiedler), GlobalSign (Atsushi Inaba), Entrust (Bruce Morton), DigiCert (Corey Bonnell), DigiCert (Dean Coclin), HARICA (Dimitris Zacharopoulos), CPA Canada (Don Sheehy), GlobalSign (Doug Beattie), SSL.com (Dustin Ward), GlobalSign (Eva Van Steenberge), Microsoft (Glaucia Young), GoDaddy (Hong Bui), Microsoft (Ian McMillan), Sectigo (Iñigo Barreira), SecureTrust (Janet Hines), BDO (Jeff Ward), TrustCor (Joanna Fox), Cisco (Jos Purvis), Microsoft (Karina Gupta), Microsoft (Karina Sirota), OATI (Kidd Freeman), Microsoft (Kiran Tummala), TÜViT / ACAB’c (Matthias Wiedenhorst), SSL.
October 13, 2021 by Corey BonnellAttendees SwissSign (Adrian Mueller), Telia Company (Ali Gholami), SecureTrust (Andrea Holland), Nimbus, Member of ETSI ESI (Arno Fiedler), GlobalSign (Atsushi Inaba), Entrust (Bruce Morton), DigiCert (Corey Bonnell), DigiCert (Dean Coclin), HARICA (Dimitris Zacharopoulos), CPA Canada (Don Sheehy), GlobalSign (Doug Beattie), SSL.com (Dustin Ward), GlobalSign (Eva Van Steenberge), Microsoft (Glaucia Young), GoDaddy (Hong Bui), Microsoft (Ian McMillan), Sectigo (Iñigo Barreira), SecureTrust (Janet Hines), BDO (Jeff Ward), TrustCor (Joanna Fox), Cisco (Jos Purvis), Microsoft (Karina Gupta), Microsoft (Karina Sirota), OATI (Kidd Freeman), Microsoft (Kiran Tummala), TÜViT / ACAB’c (Matthias Wiedenhorst), SSL.
2021-10-07 Minutes of the Code Signing Certificate Working Group
October 7, 2021 by Corey BonnellAttendees Andrea Holland, Atsushi Inaba, Bruce Morton, Corey Bonnell, Dean Coclin, Iñigo Barreira, Ian McMillan, Janet Hines, Kiran Tummala, Roberto Quiñones, Sebstian Schulz, Tim Hollebeek Minutes Minute-taker: Iñigo Dean read the antitrust statement. Meeting minutes from last meeting were approved. NetSec WG discussion Ben emailed the rest of the WG to know if they could consider the NetSec to move from a subcommittee under the SCWG and become a WG that will affect the other WGs.
October 7, 2021 by Corey BonnellAttendees Andrea Holland, Atsushi Inaba, Bruce Morton, Corey Bonnell, Dean Coclin, Iñigo Barreira, Ian McMillan, Janet Hines, Kiran Tummala, Roberto Quiñones, Sebstian Schulz, Tim Hollebeek Minutes Minute-taker: Iñigo Dean read the antitrust statement. Meeting minutes from last meeting were approved. NetSec WG discussion Ben emailed the rest of the WG to know if they could consider the NetSec to move from a subcommittee under the SCWG and become a WG that will affect the other WGs.
Ballot CSC-11 – Update to log data retention requirements
October 4, 2021 by Corey BonnellResults of IPR Review (Mailing list post is available here.) The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 2021-11-03, are available here. Results of Voting (Mailing list post is available here.) Yes No Abstain Certificate Issuers Certum (Asseco), DigiCert, eMudhra, Entrust, GlobalSign, HARICA, Sectigo, SecureTrust Certificate Consumers Microsoft The ballot has PASSED. Purpose of the Ballot Update the log data and retention of log data requirements in the Baseline Requirement for the Issuance and Management of Publicly-Trusted Code Signing Certificates v2.
October 4, 2021 by Corey BonnellResults of IPR Review (Mailing list post is available here.) The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 2021-11-03, are available here. Results of Voting (Mailing list post is available here.) Yes No Abstain Certificate Issuers Certum (Asseco), DigiCert, eMudhra, Entrust, GlobalSign, HARICA, Sectigo, SecureTrust Certificate Consumers Microsoft The ballot has PASSED. Purpose of the Ballot Update the log data and retention of log data requirements in the Baseline Requirement for the Issuance and Management of Publicly-Trusted Code Signing Certificates v2.
2021-09-23 Minutes of the Code Signing Certificate Working Group
September 23, 2021 by Corey BonnellAttendees Atsushi Inaba, Ben Wilson, Bruce Morton, Corey Bonnell, Dimitris Zacharopoulos, Ian McMillan, Iñigo Barreira, Janet Hines, Joanna Fox, Roberto Quiñones, Sebastian Schulz, Tim Crawford, Tomas Gustavsson Minutes Bruce read the antitrust statement. Meeting minutes from Sept 9th were approved. Ballot status: CSC-9 and CSC-10 both completed IPR and were published. CSC-6: Ian said to wait to discuss in favor of discussing CSC-11. CSC-11: Ian shared current redline on the list for the discussion period.
September 23, 2021 by Corey BonnellAttendees Atsushi Inaba, Ben Wilson, Bruce Morton, Corey Bonnell, Dimitris Zacharopoulos, Ian McMillan, Iñigo Barreira, Janet Hines, Joanna Fox, Roberto Quiñones, Sebastian Schulz, Tim Crawford, Tomas Gustavsson Minutes Bruce read the antitrust statement. Meeting minutes from Sept 9th were approved. Ballot status: CSC-9 and CSC-10 both completed IPR and were published. CSC-6: Ian said to wait to discuss in favor of discussing CSC-11. CSC-11: Ian shared current redline on the list for the discussion period.
Ballot CSC-9 – Spring 2021 Cleanup and Clarification
September 9, 2021 by Ben WilsonIPR Review Results The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 9 September 2021, are available here. Voting Results Voting on Ballot CSC-9 has concluded and the ballot has passed. Below are the results: CAs voting in favor: Actalis, Certum (Asseco), DigiCert, eMudhra, Entrust, GlobalSign, HARICA, Sectigo, SSL.com, SecureTrust CAs opposed: None CAs abstaining: None Certificate Consumers: In Favor: Microsoft
September 9, 2021 by Ben WilsonIPR Review Results The review period has ended and no exclusion notices were filed. The final documents, with the effective date being 9 September 2021, are available here. Voting Results Voting on Ballot CSC-9 has concluded and the ballot has passed. Below are the results: CAs voting in favor: Actalis, Certum (Asseco), DigiCert, eMudhra, Entrust, GlobalSign, HARICA, Sectigo, SSL.com, SecureTrust CAs opposed: None CAs abstaining: None Certificate Consumers: In Favor: Microsoft
2021-09-09 Minutes of the Code Signing Certificate Working Group
September 9, 2021 by Corey BonnellAttendees Atsushi Inaba, Ben Wilson, Bruce Morton, Corey Bonnell, Dean Coclin, Dimitris Zacharopoulos, Iñigo Barreira, Janet Hines, Joanna Fox, Roberto Quiñones, Sebastian Schulz, Tim Hollebeek, Tomas Gustavsson Minutes Dean read the anti-trust statement. Minute-taker: Joanna. Next minute taker: Corey Prior meeting minutes of 26 August 2021 were approved. WordPress steps to update the CSCBRs Ben asked for a volunteer webmaster to do WP ballot page and be appointed to do the updates and publication.
September 9, 2021 by Corey BonnellAttendees Atsushi Inaba, Ben Wilson, Bruce Morton, Corey Bonnell, Dean Coclin, Dimitris Zacharopoulos, Iñigo Barreira, Janet Hines, Joanna Fox, Roberto Quiñones, Sebastian Schulz, Tim Hollebeek, Tomas Gustavsson Minutes Dean read the anti-trust statement. Minute-taker: Joanna. Next minute taker: Corey Prior meeting minutes of 26 August 2021 were approved. WordPress steps to update the CSCBRs Ben asked for a volunteer webmaster to do WP ballot page and be appointed to do the updates and publication.