CA/Browser Forum posts
Posts by tag Server Certificates
Ballot 155 – Convert Network and Certificate System Security Requirements to RFC 3647 Framework and GitHub
November 15, 2015 by Ben WilsonThis ballot was withdrawn.
November 15, 2015 by Ben WilsonThis ballot was withdrawn.
Ballot 153 – Short-Lived Certificates
November 11, 2015 by Ben WilsonBallot 153 – Short-Lived Certificates Ballot 153, Short-Lived Certificates revision, closed on November 10th 2015. The Chair received 26 votes from CAs in which 04 were in favor, 17 against and 05 abstentions and 05 votes from Browsers in which 04 were in favor, 01 against and 0 abstention. Therefore the ballot fails.
November 11, 2015 by Ben WilsonBallot 153 – Short-Lived Certificates Ballot 153, Short-Lived Certificates revision, closed on November 10th 2015. The Chair received 26 votes from CAs in which 04 were in favor, 17 against and 05 abstentions and 05 votes from Browsers in which 04 were in favor, 01 against and 0 abstention. Therefore the ballot fails.
Ballot 151 – Addition of Optional OIDs for Indicating Level of Validation
September 28, 2015 by Ben WilsonBallot 151 – Addition of Optional OIDs for Indicating Level of Validation Ballot 151, OID revisions, closed on September 28th 2015. The Chair received 22 votes from CAs in which 19 were in favor, 0 against and 3 abstentions and 3 votes from Browsers in which 2 were in favor, 0 against and 1 abstention. Therefore the ballot passes.
September 28, 2015 by Ben WilsonBallot 151 – Addition of Optional OIDs for Indicating Level of Validation Ballot 151, OID revisions, closed on September 28th 2015. The Chair received 22 votes from CAs in which 19 were in favor, 0 against and 3 abstentions and 3 votes from Browsers in which 2 were in favor, 0 against and 1 abstention. Therefore the ballot passes.
Ballot 147 – Attorney Accountant Letter Changes
June 25, 2015 by Ben WilsonBallot 147 – Attorney-Accountant Letter Changes Voting on Ballot 147 has closed. Here are the results:
June 25, 2015 by Ben WilsonBallot 147 – Attorney-Accountant Letter Changes Voting on Ballot 147 has closed. Here are the results:
Ballot 146 – Convert Baseline Requirements to RFC 3647 Framework
April 16, 2015 by Ben WilsonBallot 146 – Convert Baseline Requirements to RFC 3647 Framework Voting has closed on Ballot 146, “Convert Baseline Requirements”
April 16, 2015 by Ben WilsonBallot 146 – Convert Baseline Requirements to RFC 3647 Framework Voting has closed on Ballot 146, “Convert Baseline Requirements”
Ballot 148 – Issuer Field Correction
April 2, 2015 by Ben WilsonVoting on Ballot 148, Issuer Field Correction, closed on 2 April 2015. We received 13 YES votes from CAs, 0 NO votes and 0 Abstentions We received 1 YES vote from Browsers, 0 NO votes and 0 Abstentions Therefore the ballot passes. Several votes were received after the ballot closed and were not counted. Full details are on the ballot tracking wiki. Ballot 148 resulted in the adoption of BRv1.2.5
April 2, 2015 by Ben WilsonVoting on Ballot 148, Issuer Field Correction, closed on 2 April 2015. We received 13 YES votes from CAs, 0 NO votes and 0 Abstentions We received 1 YES vote from Browsers, 0 NO votes and 0 Abstentions Therefore the ballot passes. Several votes were received after the ballot closed and were not counted. Full details are on the ballot tracking wiki. Ballot 148 resulted in the adoption of BRv1.2.5
Ballot 145 – Operational Existence for Government Entities
February 19, 2015 by Ben WilsonBallot 145 – Operational Existence for Government Entities Reason Because government entities aren’t operating as businesses, they are often not listed with a QIIS, especially immediately after the entity is created by either statute or order. The legal existence of these entities is verifiable through a QGIS, but this source in many countries (especially Arabic and African countries) does not always list a date of creation of these entities. Operational existence exists to ensure organizations aren’t fly-by-night scams/phishing entities. With government entities, these same risks are not present as they are created directly by government action.
February 19, 2015 by Ben WilsonBallot 145 – Operational Existence for Government Entities Reason Because government entities aren’t operating as businesses, they are often not listed with a QIIS, especially immediately after the entity is created by either statute or order. The legal existence of these entities is verifiable through a QGIS, but this source in many countries (especially Arabic and African countries) does not always list a date of creation of these entities. Operational existence exists to ensure organizations aren’t fly-by-night scams/phishing entities. With government entities, these same risks are not present as they are created directly by government action.
Ballot 144 – Validation rules for .onion names
February 18, 2015 by Ben WilsonBallot 144 – Validation Rules for .onion Names – passed with 6 Yes votes, 2 No votes and 13 Abstentions from the CAs and 3 Yes votes from the browsers. Detailed results are on the Forum’s ballot tracker (Ballot Results – Vote Tally at the bottom of the Ballots page on the Forum’s wiki). Ballot 144 reads as follows: Applicants want a CA-signed .onion address for several reasons, including: – Powerful web platform features are restricted to secure origins, which are currently not available to onion names (in part, because of the lack of IANA registration). Permitting EV certs for onion names will help provide a secure origin for the service, moving onion towards use of powerful web platform features.
February 18, 2015 by Ben WilsonBallot 144 – Validation Rules for .onion Names – passed with 6 Yes votes, 2 No votes and 13 Abstentions from the CAs and 3 Yes votes from the browsers. Detailed results are on the Forum’s ballot tracker (Ballot Results – Vote Tally at the bottom of the Ballots page on the Forum’s wiki). Ballot 144 reads as follows: Applicants want a CA-signed .onion address for several reasons, including: – Powerful web platform features are restricted to secure origins, which are currently not available to onion names (in part, because of the lack of IANA registration). Permitting EV certs for onion names will help provide a secure origin for the service, moving onion towards use of powerful web platform features.