CA/Browser Forum posts
Posts by tag Minutes
2025-07-10 Minutes of the Code Signing Certificate Working Group
July 10, 2025 by Code Signing Certificate Working Group Meeting Minutes – July 10th, 2025Note Well The Note Well was read.
July 10, 2025 by Code Signing Certificate Working Group Meeting Minutes – July 10th, 2025Note Well The Note Well was read.
2025-07-02 Minutes of the S/MIME Certificate Working Group
July 2, 2025 by Minutes of SMCWG July 2, 2025 These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
July 2, 2025 by Minutes of SMCWG July 2, 2025 These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
2025-06-26 Minutes of the Code Signing Certificate Working Group
June 26, 2025 by Certificate Signing Certificate Working Group (CSCWG) – Meeting MinutesDate: June 26, 2025 Note Well The Note Well was read.
June 26, 2025 by Certificate Signing Certificate Working Group (CSCWG) – Meeting MinutesDate: June 26, 2025 Note Well The Note Well was read.
2025-06-12 Minutes of the Code Signing Certificate Working Group
June 12, 2025 by These are the Final Minutes of the CSCWG F2F Meeting as prepared by Brianca Martin. Martijn read the Antitrust statement. Adopted agenda as presented. Discussion topics Discussion Topic: Migration to a single profile Microsoft introduced this topic 1 year ago. Are there specific items that we want to bring to a single profile? Karina from Microsoft: Need to understand where the line is we want to draw. Goal is to keep them closer to EV, uplevel all code signing certificates to keep as much identify/information as we can. Suggestion from Martijn to go through section to indentify each section that needs to be removed. Karina suggested we have an offline discussion to review the fields. Martijn suggested to use GitHub. Send Karina an email if you want to participate in this discussion. Brianca asked what the end goal is or if there is a timeline driving this requirement. Karina - Goal is that every certificate is EV. Bruce from Entrust expressed that EV may not support all subscribers. May have to change the EV rules. Rather than having all EV characteristics they have the Org ID which provides third party information about the subscriber. Consider using another number in the Org ID Karina would like data to understand how many subscribers OV doesn’t work for and why. The average consumer should be able to see who signed the code. Bruce stated that the Non-EV side allows “”, EV does not. Consider eliminating OV for individuals. Document signing required face to face verification, code signing does not. Code signing certificates most to sign malware. Martijn shared a recent example about a reason to include face to face verification. Karina emphasized that she is open to carve outs. Corey shared a DV-style for code signing that may be useful for certificates without an organization. Martijn Corey shared that publicly trusted certificates use “”, we may be able to use that for code signing. Martijn will start a branch on GitHub to start the process. Discussion Topic: Reduction of maximum certificate validity *No updates from Microsoft
June 12, 2025 by These are the Final Minutes of the CSCWG F2F Meeting as prepared by Brianca Martin. Martijn read the Antitrust statement. Adopted agenda as presented. Discussion topics Discussion Topic: Migration to a single profile Microsoft introduced this topic 1 year ago. Are there specific items that we want to bring to a single profile? Karina from Microsoft: Need to understand where the line is we want to draw. Goal is to keep them closer to EV, uplevel all code signing certificates to keep as much identify/information as we can. Suggestion from Martijn to go through section to indentify each section that needs to be removed. Karina suggested we have an offline discussion to review the fields. Martijn suggested to use GitHub. Send Karina an email if you want to participate in this discussion. Brianca asked what the end goal is or if there is a timeline driving this requirement. Karina - Goal is that every certificate is EV. Bruce from Entrust expressed that EV may not support all subscribers. May have to change the EV rules. Rather than having all EV characteristics they have the Org ID which provides third party information about the subscriber. Consider using another number in the Org ID Karina would like data to understand how many subscribers OV doesn’t work for and why. The average consumer should be able to see who signed the code. Bruce stated that the Non-EV side allows “”, EV does not. Consider eliminating OV for individuals. Document signing required face to face verification, code signing does not. Code signing certificates most to sign malware. Martijn shared a recent example about a reason to include face to face verification. Karina emphasized that she is open to carve outs. Corey shared a DV-style for code signing that may be useful for certificates without an organization. Martijn Corey shared that publicly trusted certificates use “”, we may be able to use that for code signing. Martijn will start a branch on GitHub to start the process. Discussion Topic: Reduction of maximum certificate validity *No updates from Microsoft
2025-06-12 Minutes of the S/MIME Certificate Working Group
June 12, 2025 by Minutes of SMCWG June 12, 2025 (Day 3 of F2F #65 in Toronto)
June 12, 2025 by Minutes of SMCWG June 12, 2025 (Day 3 of F2F #65 in Toronto)
Minutes of the F2F 65 Meeting in Toronto, Canada - SCWG, June 11, 2025
June 11, 2025 by Dimitris ZacharopoulosSCWG Minutes on Day 2 Wednesday, 11 June 2025, of the F2F 64 Meeting in Toronto, CanadaAttendance Wayne Thayer (Fastly), Dean Coclin (DigiCert), Tim Callan (Sectigo), Enrico Entschew (D-Trust), Andreas Henschel (D-Trust), JinHwan Shin (Deloitte KOREA), Masatoshi Shigaki (KPMG Japan),, Brian Hsiung (Sunrise CPA), Adam Frock (BDO), Yannick Thomassier (Certinomis), Tadahiko Ito (Secoom), Fumiaki Ono (Secom), Chris Clements (Chrome), Ryan Dickson (Chrome), David Adrian (Chrome), Josselin Allemandou (Certigna), Romain Delval (Certigna), Chad Dandar (Cisco), Ben Wilson (Mozilla), Tim Crawford (WebTrust/BDO), Chris Czajczyc (Deloitte), Scott Rea (wMudhra), Rebecca Kelley (SSL.com), Leo Grove (SSL.com), Luis Cervantes (SSL.com), Eric Cramer (Sectigo), Martijn Katerbarg (Sectigo), Nick France (Sectigo), Henry Lam (Sectigo), Tsung-Min Kuo (Chunghwa Telecom), Jay Wilson (Sectigo), Rob Stradling (Sectigo), Karina Goodley (Microsoft), Lora Randolph (Microsoft), Matthre McPherrin (Let’s Encrypt), Arnold Essing (Telekom Security), David Hsiu (KPMG Taiwan), Christophe Bonjean (Globalsign), Eva Van Steenberge (Globalsign), Gregory Tomko (GlobalSign),, Tim Hollebeek (DigiCert), Brianca Martin (Amazon Trust Services), Trevoli Ponds-White (Amazon Trust Services), Michael Slaughter (Amazon Trust Services), Aaron Poulsen (Amazon Trust Serivices), Jeremy Rowley (DigiCert), John Sarapeta (Google Trust Services),Nicol So (CommScope), Sandy Balzer (SwissSign), Jaime Hablutzel (WISeKey), Atsushi Inaba (Globalsign), Llew Curran (GoDaddy), Rollin Yu (TrustAsia), Jieun Seong (MOIS), Jozef Nigut (Disig), Kateryna Aleksieieva (Certum), Corey Rasmussen (OATI), Michelle Coon (OATI), Kate Xu (TrustAsia), Eric Hampshire (Cisco), Hisashi Kamo (Secom), Steven Diette (GoDaddy), John Mason (Microsoft), Pekka Lahtiharju (Telia), Tobias Josefowitz (Opera), Xiu Lei (GDCA), Aaron Gable (ISRG), Nate Smith (GoDaddy), Quan Nham (Fastly), Huang Nome (TrustAsia), Masaru Sakamoto (Cybertrust Japan), Renne Rodriguez (Apple), Rich Smith (DigiCert), Li-Chun Chen (Chunghwa Telecom), Masaru Sakamoto (CyberTrust Japan), Roman Fischer (SwissSign), Wendy Brown (FPKIMA), Hogeun Yoo (NAVER Cloud), Zurina Zolkaffly (MSC Trustgate), Clemens Wanko (ACAB’c / TUV AUSTRIA), Paul van Brouwershaven (SSL.com), Jos Purvis (Fastly), Eamon Zhang (TrustAsia), Peter Miskovic (Disig), Marco Schambach (IdenTrust), uis Osses (Amazon Trust Services), Matthias Wiedenhorst (ACAB’c), Jun Okura (CyberTrust), Nargis Mannan (VikingCloud), Adrian Mueller (SwissSign), Thanos Vrachnos (SSL.com), Hazhar Ismail (MSC Trustgate), Adriano Santoni (Actalis).
June 11, 2025 by Dimitris ZacharopoulosSCWG Minutes on Day 2 Wednesday, 11 June 2025, of the F2F 64 Meeting in Toronto, CanadaAttendance Wayne Thayer (Fastly), Dean Coclin (DigiCert), Tim Callan (Sectigo), Enrico Entschew (D-Trust), Andreas Henschel (D-Trust), JinHwan Shin (Deloitte KOREA), Masatoshi Shigaki (KPMG Japan),, Brian Hsiung (Sunrise CPA), Adam Frock (BDO), Yannick Thomassier (Certinomis), Tadahiko Ito (Secoom), Fumiaki Ono (Secom), Chris Clements (Chrome), Ryan Dickson (Chrome), David Adrian (Chrome), Josselin Allemandou (Certigna), Romain Delval (Certigna), Chad Dandar (Cisco), Ben Wilson (Mozilla), Tim Crawford (WebTrust/BDO), Chris Czajczyc (Deloitte), Scott Rea (wMudhra), Rebecca Kelley (SSL.com), Leo Grove (SSL.com), Luis Cervantes (SSL.com), Eric Cramer (Sectigo), Martijn Katerbarg (Sectigo), Nick France (Sectigo), Henry Lam (Sectigo), Tsung-Min Kuo (Chunghwa Telecom), Jay Wilson (Sectigo), Rob Stradling (Sectigo), Karina Goodley (Microsoft), Lora Randolph (Microsoft), Matthre McPherrin (Let’s Encrypt), Arnold Essing (Telekom Security), David Hsiu (KPMG Taiwan), Christophe Bonjean (Globalsign), Eva Van Steenberge (Globalsign), Gregory Tomko (GlobalSign),, Tim Hollebeek (DigiCert), Brianca Martin (Amazon Trust Services), Trevoli Ponds-White (Amazon Trust Services), Michael Slaughter (Amazon Trust Services), Aaron Poulsen (Amazon Trust Serivices), Jeremy Rowley (DigiCert), John Sarapeta (Google Trust Services),Nicol So (CommScope), Sandy Balzer (SwissSign), Jaime Hablutzel (WISeKey), Atsushi Inaba (Globalsign), Llew Curran (GoDaddy), Rollin Yu (TrustAsia), Jieun Seong (MOIS), Jozef Nigut (Disig), Kateryna Aleksieieva (Certum), Corey Rasmussen (OATI), Michelle Coon (OATI), Kate Xu (TrustAsia), Eric Hampshire (Cisco), Hisashi Kamo (Secom), Steven Diette (GoDaddy), John Mason (Microsoft), Pekka Lahtiharju (Telia), Tobias Josefowitz (Opera), Xiu Lei (GDCA), Aaron Gable (ISRG), Nate Smith (GoDaddy), Quan Nham (Fastly), Huang Nome (TrustAsia), Masaru Sakamoto (Cybertrust Japan), Renne Rodriguez (Apple), Rich Smith (DigiCert), Li-Chun Chen (Chunghwa Telecom), Masaru Sakamoto (CyberTrust Japan), Roman Fischer (SwissSign), Wendy Brown (FPKIMA), Hogeun Yoo (NAVER Cloud), Zurina Zolkaffly (MSC Trustgate), Clemens Wanko (ACAB’c / TUV AUSTRIA), Paul van Brouwershaven (SSL.com), Jos Purvis (Fastly), Eamon Zhang (TrustAsia), Peter Miskovic (Disig), Marco Schambach (IdenTrust), uis Osses (Amazon Trust Services), Matthias Wiedenhorst (ACAB’c), Jun Okura (CyberTrust), Nargis Mannan (VikingCloud), Adrian Mueller (SwissSign), Thanos Vrachnos (SSL.com), Hazhar Ismail (MSC Trustgate), Adriano Santoni (Actalis).
2025-06-10 Minutes of the Forum Toronto F2F
June 10, 2025 by CA/B Forum Teleconference - 2025-06-10Meeting Title: CA/Browser Forum Toronto F2F Date: 10 June 2025 Chair: Dean Coclin Guest speaker: Chrome’s views on PQCPresenter: David Adrian Presentation Link: https://cabforum.org/2025/06/10/2025-06-10-minutes-of-the-forum-toronto-f2f/Chrome_PQC_CABF_F2F_Toronto_2025_EXTERNAL.pdf Guest speaker: The Future of ZLintPresenter: Zakir Durumeric Presentation Link: https://cabforum.org/2025/06/10/2025-06-10-minutes-of-the-forum-toronto-f2f/The_Future_of_ZLint_CABF_F2F_Toronto_2025.pdf Remedies for CPS ErrorsPresenter: Tim Callan Minute taker: Ben Wilson See SCWG minutes Panel Q&APresenter: Ben Wilson Minute taker: Dimitris No additional discussion. Mozilla Root Program UpdatePresenter: Ben Wilson Presentation Link: https://cabforum.org/2025/06/10/2025-06-10-minutes-of-the-forum-toronto-f2f/June-2025-Mozilla-News.pdf Minute taker: Scott Rea Ben’s curated notes (presented in the meeting) can be found at: https://drive.google.com/file/d/1zv6XlzitsQdaBp6gf_u3ND7Fzum1pPLY/view
June 10, 2025 by CA/B Forum Teleconference - 2025-06-10Meeting Title: CA/Browser Forum Toronto F2F Date: 10 June 2025 Chair: Dean Coclin Guest speaker: Chrome’s views on PQCPresenter: David Adrian Presentation Link: https://cabforum.org/2025/06/10/2025-06-10-minutes-of-the-forum-toronto-f2f/Chrome_PQC_CABF_F2F_Toronto_2025_EXTERNAL.pdf Guest speaker: The Future of ZLintPresenter: Zakir Durumeric Presentation Link: https://cabforum.org/2025/06/10/2025-06-10-minutes-of-the-forum-toronto-f2f/The_Future_of_ZLint_CABF_F2F_Toronto_2025.pdf Remedies for CPS ErrorsPresenter: Tim Callan Minute taker: Ben Wilson See SCWG minutes Panel Q&APresenter: Ben Wilson Minute taker: Dimitris No additional discussion. Mozilla Root Program UpdatePresenter: Ben Wilson Presentation Link: https://cabforum.org/2025/06/10/2025-06-10-minutes-of-the-forum-toronto-f2f/June-2025-Mozilla-News.pdf Minute taker: Scott Rea Ben’s curated notes (presented in the meeting) can be found at: https://drive.google.com/file/d/1zv6XlzitsQdaBp6gf_u3ND7Fzum1pPLY/view
2025-05-29 Minutes of the Code Signing Certificate Working Group
May 29, 2025 by Certificate Signing Certificate Working Group (CSCWG) – Meeting MinutesDate: May 29, 2025 1. Antitrust Reminder Martijn read the Note Well
May 29, 2025 by Certificate Signing Certificate Working Group (CSCWG) – Meeting MinutesDate: May 29, 2025 1. Antitrust Reminder Martijn read the Note Well
2025-05-22 Minutes of the Forum
May 22, 2025 by CA/B Forum Teleconference - 2025-05-22Meeting Title: CA/Browser Forum Date: 22 May 2025 Chair: Dean Coclin 1. Roll Call and Housekeeping Meeting called to order by Dean Coclin; recording in process. 2. Note-well Note-well has already been read. 3. Review Agenda No changes to the agenda. 4. Approval of Minutes April 10th - still pending May 8th - minutes approved. 5. Server Certificate Working Group update (Dimitris) SCWG Wayne said SC81 passed IPR review period, and new version after fixing some issues is available. Validation Subcommittee They spent the majority of time to discuss SC085 and SC082, and make significant progress including triage of a bunch of bugs in GitHub, including assigning things out to a few people. 6. Code Signing Certificate Working Group update (Martijn) CSC030 should be hitting discussion period shortly, and not further updates yet on reducing the validity period. Karina will take over the role of representative from Microsoft, and the ballot for reduction of validity period will start running by Microsoft. PQC ballot is pending, and looking for additional endorser. 7. S/MIME Certificate Working Group update (Stephen) Discussed on PQC to found out what else is need for ballot. Also discussed on MPIC and validation control over mailbox. SMC012 is in the discussion period. Kicked off for updating Section 7 and looking for volunteers. 8. NetSec Working Group update (Ben) Went through the issues on GitHub and closed 4~5 of them because they had already been resolved. Reviewed agenda for F2F meeting. 9. Definitions and Glossary Working Group (Tim Callan) Compared definitions from various documents to identify inconsistencies. Most definitions were identical or had trivial differences like capitalization. Developed proposals to resolve discrepancies and aim to gather feedback from a group of participants. The next steps involve incorporating feedback into a document and proceeding with a ballot. 10. Forum Infrastructure Subcommittee update (Ben) No meeting last week. 11. Intellectual Property Rights Subcommittee (Ben) Working on revising IPR policy. An email was sent on May 19th to a public list requesting feedback on the invited experts policy and agreement by the deadline of May 27th, acknowledging the upcoming holiday. Ben encouraged feedback by Tuesday and seeks two endorsers for a forum ballot. 12. Bylaws Changes (Ben) Aaron said a forum bylaws change ballot was sent to an old mailing list instead of current one, preventing recipients from receiving them. Aaron restarted the discussion period and encouraged participants to review the email and ballot, and to provide any comments or suggestions. 13. F2F meeting Agenda Tim highlighted recent incidents related to CPS errors causing mass revocation events, and proposed discussing potential solutions to improve transparency and accountability without such events. Dean encouraged participants to send topics after the call, if needed. Rebecca inquired about deadlines for agenda topics and Dean confirmed it would be finalized a week before the meeting.
May 22, 2025 by CA/B Forum Teleconference - 2025-05-22Meeting Title: CA/Browser Forum Date: 22 May 2025 Chair: Dean Coclin 1. Roll Call and Housekeeping Meeting called to order by Dean Coclin; recording in process. 2. Note-well Note-well has already been read. 3. Review Agenda No changes to the agenda. 4. Approval of Minutes April 10th - still pending May 8th - minutes approved. 5. Server Certificate Working Group update (Dimitris) SCWG Wayne said SC81 passed IPR review period, and new version after fixing some issues is available. Validation Subcommittee They spent the majority of time to discuss SC085 and SC082, and make significant progress including triage of a bunch of bugs in GitHub, including assigning things out to a few people. 6. Code Signing Certificate Working Group update (Martijn) CSC030 should be hitting discussion period shortly, and not further updates yet on reducing the validity period. Karina will take over the role of representative from Microsoft, and the ballot for reduction of validity period will start running by Microsoft. PQC ballot is pending, and looking for additional endorser. 7. S/MIME Certificate Working Group update (Stephen) Discussed on PQC to found out what else is need for ballot. Also discussed on MPIC and validation control over mailbox. SMC012 is in the discussion period. Kicked off for updating Section 7 and looking for volunteers. 8. NetSec Working Group update (Ben) Went through the issues on GitHub and closed 4~5 of them because they had already been resolved. Reviewed agenda for F2F meeting. 9. Definitions and Glossary Working Group (Tim Callan) Compared definitions from various documents to identify inconsistencies. Most definitions were identical or had trivial differences like capitalization. Developed proposals to resolve discrepancies and aim to gather feedback from a group of participants. The next steps involve incorporating feedback into a document and proceeding with a ballot. 10. Forum Infrastructure Subcommittee update (Ben) No meeting last week. 11. Intellectual Property Rights Subcommittee (Ben) Working on revising IPR policy. An email was sent on May 19th to a public list requesting feedback on the invited experts policy and agreement by the deadline of May 27th, acknowledging the upcoming holiday. Ben encouraged feedback by Tuesday and seeks two endorsers for a forum ballot. 12. Bylaws Changes (Ben) Aaron said a forum bylaws change ballot was sent to an old mailing list instead of current one, preventing recipients from receiving them. Aaron restarted the discussion period and encouraged participants to review the email and ballot, and to provide any comments or suggestions. 13. F2F meeting Agenda Tim highlighted recent incidents related to CPS errors causing mass revocation events, and proposed discussing potential solutions to improve transparency and accountability without such events. Dean encouraged participants to send topics after the call, if needed. Rebecca inquired about deadlines for agenda topics and Dean confirmed it would be finalized a week before the meeting.
2025-05-22 Minutes of the Server Certificate Working Group
May 22, 2025 by Wayne ThayerCA/B Forum Server Certificate WG Teleconference-20250522Meeting Title: CA/Browser Forum Server Certificate WG Date: 22 May 2025 Chair: Wayne Thayer on belalf of Dimitris Zacharopoulos Minutes Taken By: Lynn Jeun 1. Roll Call Meeting called to order by Wayne Thayer; Begin recording.
May 22, 2025 by Wayne ThayerCA/B Forum Server Certificate WG Teleconference-20250522Meeting Title: CA/Browser Forum Server Certificate WG Date: 22 May 2025 Chair: Wayne Thayer on belalf of Dimitris Zacharopoulos Minutes Taken By: Lynn Jeun 1. Roll Call Meeting called to order by Wayne Thayer; Begin recording.