CA/Browser Forum posts
Posts by tag Minutes
2025-11-06 Minutes of the Forum
November 6, 2025 by Minutes for CA/B Forum Plenary Teleconference 2025-11-06Roll call Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Adam Jones (Microsoft), Adrian Mueller (SwissSign), Alvin Wang (SHECA), Antti Backman (Telia Company), Ben Wilson (Mozilla), Chris Clements (Google), Clint Wilson (Apple), Daryn Wright (Apple), Dean Coclin (DigiCert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Apple), Enrico Entschew (D-TRUST), Gurleen Grewal (Google), Hogeun Yoo (NAVER Cloud Trust Services), Inaba Atsushi (GlobalSign), Jeanette Snook (Visa), Jos Purvis (Fastly), Jun Okura (Cybertrust Japan), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Lilia Dubko (CPA Canada/WebTrust), Lucy Buecking (IdenTrust), Luis Cervantes (SSL.com), Mahua Chaudhuri (Microsoft), Marco Schambach (IdenTrust), Masaru Sakamoto (Cybertrust Japan), Matthew McPherrin (Let’s Encrypt), Michelle Coon (OATI), Mrugesh Chandarana (IdenTrust), Nargis Mannan (VikingCloud), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rebecca Kelly (SSL.com), Rollin Yu (TrustAsia), Roman Fischer (SwissSign), Ryan Dickson (Google), Sean Huang (TWCA), Stephen Davidson (DigiCert), Tadahiko Ito (SECOM Trust Systems), Tathan Thacker (IdenTrust), Thomas Zermeno (SSL.com), Tobias Josefowitz (Opera Software AS), Wayne Thayer (Fastly), Wendy Brown (US Federal PKI Management Authority).
November 6, 2025 by Minutes for CA/B Forum Plenary Teleconference 2025-11-06Roll call Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Adam Jones (Microsoft), Adrian Mueller (SwissSign), Alvin Wang (SHECA), Antti Backman (Telia Company), Ben Wilson (Mozilla), Chris Clements (Google), Clint Wilson (Apple), Daryn Wright (Apple), Dean Coclin (DigiCert), Dimitris Zacharopoulos (HARICA), Doug Beattie (GlobalSign), Dustin Hollenback (Apple), Enrico Entschew (D-TRUST), Gurleen Grewal (Google), Hogeun Yoo (NAVER Cloud Trust Services), Inaba Atsushi (GlobalSign), Jeanette Snook (Visa), Jos Purvis (Fastly), Jun Okura (Cybertrust Japan), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Lilia Dubko (CPA Canada/WebTrust), Lucy Buecking (IdenTrust), Luis Cervantes (SSL.com), Mahua Chaudhuri (Microsoft), Marco Schambach (IdenTrust), Masaru Sakamoto (Cybertrust Japan), Matthew McPherrin (Let’s Encrypt), Michelle Coon (OATI), Mrugesh Chandarana (IdenTrust), Nargis Mannan (VikingCloud), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rebecca Kelly (SSL.com), Rollin Yu (TrustAsia), Roman Fischer (SwissSign), Ryan Dickson (Google), Sean Huang (TWCA), Stephen Davidson (DigiCert), Tadahiko Ito (SECOM Trust Systems), Tathan Thacker (IdenTrust), Thomas Zermeno (SSL.com), Tobias Josefowitz (Opera Software AS), Wayne Thayer (Fastly), Wendy Brown (US Federal PKI Management Authority).
2025-11-06 Minutes of the Server Certificate Working Group
November 6, 2025 by Wayne ThayerBegin Recording - Roll Call (as noted) Read note-well. Note well read by Dimitris Review of Agenda. Agenda reviewed, no changes Minutes approval October 16, 2025, F2F#66 (Draft minutes have not been distributed yet). Nothing to review yet. Will be reviewed at future meeting. Membership applications Ronald Koorn (Interested Party, individual). Approved Saudi Data and Artificial Intelligence Authority (SDAIA), previously known as National Center for Digital Certification (NCDC) (Root Certificate Issuer). Question: Is this a meaningful transfer of key material and should this be reviewed again? Answer: No, this is not what happened. It’s a reorg within the Saudi government. The root is trusted by Microsoft and CCADB shows the root is now listed as SDAIA. Membership approved.
November 6, 2025 by Wayne ThayerBegin Recording - Roll Call (as noted) Read note-well. Note well read by Dimitris Review of Agenda. Agenda reviewed, no changes Minutes approval October 16, 2025, F2F#66 (Draft minutes have not been distributed yet). Nothing to review yet. Will be reviewed at future meeting. Membership applications Ronald Koorn (Interested Party, individual). Approved Saudi Data and Artificial Intelligence Authority (SDAIA), previously known as National Center for Digital Certification (NCDC) (Root Certificate Issuer). Question: Is this a meaningful transfer of key material and should this be reviewed again? Answer: No, this is not what happened. It’s a reorg within the Saudi government. The root is trusted by Microsoft and CCADB shows the root is now listed as SDAIA. Membership approved.
2025-10-17 Minutes of the S/MIME Certificate Working Group
October 17, 2025 by Minutes of SMCWG October 17, 2025 Face-to-Face CABF #66, Warsaw Poland
October 17, 2025 by Minutes of SMCWG October 17, 2025 Face-to-Face CABF #66, Warsaw Poland
2025-10-08 Minutes of the S/MIME Certificate Working Group
October 8, 2025 by Minutes of SMCWG October 8, 2025 These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
October 8, 2025 by Minutes of SMCWG October 8, 2025 These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
2025-09-25 Minutes of the Forum
September 25, 2025 by Meeting Date: 2025-09-25 Attendees: Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Abdul Hakeem Putra (MSC Trustgate Sdn Bhd), Adam Jones (Microsoft), Alvin Wang (SHECA), Antti Backman (Telia Company), Ben Wilson (Mozilla), Brianca Martin (Amazon), Chad Dandar (Cisco Systems), Clint Wilson (Apple), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Dean Coclin (DigiCert), Gregory Tomko (GlobalSign), Hogeun Yoo (NAVER Cloud Trust Services), Inaba Atsushi (GlobalSign), Janet Hines (VikingCloud), Jeanette Snook (Visa), Jun Okura (Cybertrust Japan), Karina Goodley (Microsoft), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Kate Xu (TrustAsia), Luis Cervantes (SSL.com), Marcelo Silva (Visa), Martijn Katerbarg (Sectigo), Matthew McPherrin (Let’s Encrypt), Michael Slaughter (Amazon), Michelle Coon (OATI), Nargis Mannan (VikingCloud), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rollin Yu (TrustAsia), Sandy Balzer (SwissSign), Scott Rea (eMudhra), Sean Huang (TWCA), Sven Rajala (Keyfactor), Tadahiko Ito (SECOM Trust Systems), Tathan Thacker (IdenTrust), Thomas Zermeno (SSL.com), Tim Hollebeek (DigiCert), Tobias Josefowitz (Opera Software AS), Tsung-Min Kuo (Chunghwa Telecom), Wayne Thayer (Fastly).
September 25, 2025 by Meeting Date: 2025-09-25 Attendees: Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Abdul Hakeem Putra (MSC Trustgate Sdn Bhd), Adam Jones (Microsoft), Alvin Wang (SHECA), Antti Backman (Telia Company), Ben Wilson (Mozilla), Brianca Martin (Amazon), Chad Dandar (Cisco Systems), Clint Wilson (Apple), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Dean Coclin (DigiCert), Gregory Tomko (GlobalSign), Hogeun Yoo (NAVER Cloud Trust Services), Inaba Atsushi (GlobalSign), Janet Hines (VikingCloud), Jeanette Snook (Visa), Jun Okura (Cybertrust Japan), Karina Goodley (Microsoft), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Kate Xu (TrustAsia), Luis Cervantes (SSL.com), Marcelo Silva (Visa), Martijn Katerbarg (Sectigo), Matthew McPherrin (Let’s Encrypt), Michael Slaughter (Amazon), Michelle Coon (OATI), Nargis Mannan (VikingCloud), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rollin Yu (TrustAsia), Sandy Balzer (SwissSign), Scott Rea (eMudhra), Sean Huang (TWCA), Sven Rajala (Keyfactor), Tadahiko Ito (SECOM Trust Systems), Tathan Thacker (IdenTrust), Thomas Zermeno (SSL.com), Tim Hollebeek (DigiCert), Tobias Josefowitz (Opera Software AS), Tsung-Min Kuo (Chunghwa Telecom), Wayne Thayer (Fastly).
2025-09-25 Minutes of the Server Certificate Working Group
September 25, 2025 by Wayne ThayerMeeting Date: 2025-09-25 Note Well: Read by Wayne Thayer during the SCWG call preceding this call. Review of Agenda: No additions or changes. Approval of Minutes: September 11, 2025 Teleconference (Draft minutes were distributed on 2025-09-11) approved. The minutes from the April 10, 2023 meeting are still pending. Action Item: Dean Coclin will resend the meeting recording to Aaron Poulsen to assist in completing the minutes. Working Group Updates Server Certificate WG (Wayne Thayer): The last meeting discussed the sunset of pre-certificate signing CAs, with the effective date moved to March 15, 2024. Validation Subcommittee (Corey Bonnell): The group discussed definitions for “Authorization Domain Name,” “Base Domain Name,” and CNAME chaining. A future ballot will be drafted to clarify these terms. The next meeting will cover IP address-based validation and F2F meeting topics. Code Signing WG (Martijn Katerbarg): Ballot CSC-31 is in discussion and will be restarted soon with minor changes. S/MIME WG (Martijn Katerbarg): The last meeting was dominated by a discussion on the use of pseudonyms in the Common Name, with differing opinions. A discussion was also held on potentially re-allowing the OU field in S/MIME certificates. NetSec WG (Clint Wilson): The group had a brief discussion on the potential use of AI as a tool for monitoring incidents, ballots, and certificate validation workflows. Clint suggested this is a broader Forum-level topic. Definitions & Glossary WG (Tim Hollebeek): Work is resuming to create a standalone definitions document and resolve circular references. Ballots are being organized. Forum Infrastructure WG (Ben Wilson): The group discussed GitHub governance, including the Contributor License Agreement (CLA) and comment moderation. They concluded that these are policy decisions for the full Forum. IPR Subcommittee (Ben Wilson): A final redlined draft of the IPR Policy v1.4 is complete and will be circulated to the public list for review. Any Other Business: Fall 2026 F2F Meeting: The host and location have been changed. The meeting will now be hosted by eMudhra in Vienna, Austria. Scott Rea from eMudhra requested that members share any known scheduling conflicts for the October 2026 timeframe.
September 25, 2025 by Wayne ThayerMeeting Date: 2025-09-25 Note Well: Read by Wayne Thayer during the SCWG call preceding this call. Review of Agenda: No additions or changes. Approval of Minutes: September 11, 2025 Teleconference (Draft minutes were distributed on 2025-09-11) approved. The minutes from the April 10, 2023 meeting are still pending. Action Item: Dean Coclin will resend the meeting recording to Aaron Poulsen to assist in completing the minutes. Working Group Updates Server Certificate WG (Wayne Thayer): The last meeting discussed the sunset of pre-certificate signing CAs, with the effective date moved to March 15, 2024. Validation Subcommittee (Corey Bonnell): The group discussed definitions for “Authorization Domain Name,” “Base Domain Name,” and CNAME chaining. A future ballot will be drafted to clarify these terms. The next meeting will cover IP address-based validation and F2F meeting topics. Code Signing WG (Martijn Katerbarg): Ballot CSC-31 is in discussion and will be restarted soon with minor changes. S/MIME WG (Martijn Katerbarg): The last meeting was dominated by a discussion on the use of pseudonyms in the Common Name, with differing opinions. A discussion was also held on potentially re-allowing the OU field in S/MIME certificates. NetSec WG (Clint Wilson): The group had a brief discussion on the potential use of AI as a tool for monitoring incidents, ballots, and certificate validation workflows. Clint suggested this is a broader Forum-level topic. Definitions & Glossary WG (Tim Hollebeek): Work is resuming to create a standalone definitions document and resolve circular references. Ballots are being organized. Forum Infrastructure WG (Ben Wilson): The group discussed GitHub governance, including the Contributor License Agreement (CLA) and comment moderation. They concluded that these are policy decisions for the full Forum. IPR Subcommittee (Ben Wilson): A final redlined draft of the IPR Policy v1.4 is complete and will be circulated to the public list for review. Any Other Business: Fall 2026 F2F Meeting: The host and location have been changed. The meeting will now be hosted by eMudhra in Vienna, Austria. Scott Rea from eMudhra requested that members share any known scheduling conflicts for the October 2026 timeframe.
2025-09-24 Minutes of the S/MIME Certificate Working Group
September 24, 2025 by Minutes of SMCWG September 24, 2025 These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
September 24, 2025 by Minutes of SMCWG September 24, 2025 These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
2025-09-11 Minutes of the Forum
September 11, 2025 by Martijn KaterbargMeeting Date: 2025-09-11 Attendees: Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Adam Jones (Microsoft), Adrian Mueller (SwissSign), Ben Wilson (Mozilla), Brianca Martin (Amazon), Bruce Morton (Entrust), Chris Clements (Google), Clint Wilson (Apple), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Daryn Wright (Apple), Dean Coclin (DigiCert), Dimitris Zacharopoulos (HARICA), Enrico Entschew (D-TRUST), Eric Kramer (Sectigo), Gregory Tomko (GlobalSign), Hogeun Yoo (NAVER Cloud Trust Services), Inaba Atsushi (GlobalSign), Iñigo Barreira (Sectigo), Jaime Hablutzel (OISTE Foundation), Janet Hines (VikingCloud), Jeanette Snook (Visa), Jeff Ward (CPA Canada/WebTrust), Johnny Reading (GoDaddy), Jun Okura (Cybertrust Japan), Karina Sirota (Microsoft), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Kate Xu (TrustAsia), Kiran Tummala (Microsoft), Lucy Buecking (IdenTrust), Luis Cervantes (SSL.com), Mahua Chaudhuri (Microsoft), Marco Schambach (IdenTrust), Martijn Katerbarg (Sectigo), Masaru Sakamoto (Cybertrust Japan), Matthew McPherrin (Let’s Encrypt), Michelle Coon (OATI), Mrugesh Chandarana (IdenTrust), Nargis Mannan (VikingCloud), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rebecca Kelly (SSL.com), Rich Smith (DigiCert), Rollin Yu (TrustAsia), Ryan Dickson (Google), Sean Huang (TWCA), Sven Rajala (Keyfactor), Tathan Thacker (IdenTrust), Thomas Zermeno (SSL.com), Tim Callan (Sectigo), Tim Hollebeek (DigiCert), Tobias Josefowitz (Opera Software AS), Wayne Thayer (Fastly), Wendy Brown (US Federal PKI Management Authority), Wiktoria Więckowska (Asseco Data Systems SA (Certum))
September 11, 2025 by Martijn KaterbargMeeting Date: 2025-09-11 Attendees: Aaron Gable (Let’s Encrypt), Aaron Poulsen (Amazon), Adam Jones (Microsoft), Adrian Mueller (SwissSign), Ben Wilson (Mozilla), Brianca Martin (Amazon), Bruce Morton (Entrust), Chris Clements (Google), Clint Wilson (Apple), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Daryn Wright (Apple), Dean Coclin (DigiCert), Dimitris Zacharopoulos (HARICA), Enrico Entschew (D-TRUST), Eric Kramer (Sectigo), Gregory Tomko (GlobalSign), Hogeun Yoo (NAVER Cloud Trust Services), Inaba Atsushi (GlobalSign), Iñigo Barreira (Sectigo), Jaime Hablutzel (OISTE Foundation), Janet Hines (VikingCloud), Jeanette Snook (Visa), Jeff Ward (CPA Canada/WebTrust), Johnny Reading (GoDaddy), Jun Okura (Cybertrust Japan), Karina Sirota (Microsoft), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Kate Xu (TrustAsia), Kiran Tummala (Microsoft), Lucy Buecking (IdenTrust), Luis Cervantes (SSL.com), Mahua Chaudhuri (Microsoft), Marco Schambach (IdenTrust), Martijn Katerbarg (Sectigo), Masaru Sakamoto (Cybertrust Japan), Matthew McPherrin (Let’s Encrypt), Michelle Coon (OATI), Mrugesh Chandarana (IdenTrust), Nargis Mannan (VikingCloud), Nate Smith (GoDaddy), Nicol So (CommScope), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Peter Miskovic (Disig), Rebecca Kelly (SSL.com), Rich Smith (DigiCert), Rollin Yu (TrustAsia), Ryan Dickson (Google), Sean Huang (TWCA), Sven Rajala (Keyfactor), Tathan Thacker (IdenTrust), Thomas Zermeno (SSL.com), Tim Callan (Sectigo), Tim Hollebeek (DigiCert), Tobias Josefowitz (Opera Software AS), Wayne Thayer (Fastly), Wendy Brown (US Federal PKI Management Authority), Wiktoria Więckowska (Asseco Data Systems SA (Certum))
2025-09-11 Minutes of the Server Certificate Working Group
September 11, 2025 by Wayne ThayerMeeting Date: 2025-09-11 Note Well: Read by Dimitris Zacharopoulos. Review of Agenda: No additions or changes. Approval of Minutes: July 17, 2025 Teleconference (Draft minutes were distributed on 2025-09-01) approved.
September 11, 2025 by Wayne ThayerMeeting Date: 2025-09-11 Note Well: Read by Dimitris Zacharopoulos. Review of Agenda: No additions or changes. Approval of Minutes: July 17, 2025 Teleconference (Draft minutes were distributed on 2025-09-01) approved.
2025-09-10 Minutes of the S/MIME Certificate Working Group
September 10, 2025 by Minutes of SMCWG These are the Minutes of the meeting for September 10, 2025. Corrections and clarifications where needed are encouraged by reply.
September 10, 2025 by Minutes of SMCWG These are the Minutes of the meeting for September 10, 2025. Corrections and clarifications where needed are encouraged by reply.