CA/Browser Forum posts
Posts by tag Server Certificates
Ballot 120 – Affiliate Authority to Verify Domain (passed)
June 5, 2014 by Ben WilsonVoting closed on June 5, 2014. We received votes in favor from Actalis, ANF, Buypass, DigiCert, Disig, Firmaprofesional, GlobalSign, GoDaddy.com, Logius PKIoverheid, Mozilla, QuoVadis, StartCom, Symantec, Trend Micro, TURKTRUST, OpenTrust, and WoSign. There were no votes against and no abstentions. Therefore, Ballot 120 passed. Kirk Hall of TrendMicro made the following motion and Jeremy Rowley of DigiCert and Cecilia Kam of Symantec have endorsed it: Ballot 120 – Affiliate Authority to Verify Domain Reasons for proposed ballot Ballot 72 in May 2012 reorganized the EV Guidelines by moving certain definitions and common provisions to the Baseline Requirements and replacing them with cross references to the Baseline Requirements.
June 5, 2014 by Ben WilsonVoting closed on June 5, 2014. We received votes in favor from Actalis, ANF, Buypass, DigiCert, Disig, Firmaprofesional, GlobalSign, GoDaddy.com, Logius PKIoverheid, Mozilla, QuoVadis, StartCom, Symantec, Trend Micro, TURKTRUST, OpenTrust, and WoSign. There were no votes against and no abstentions. Therefore, Ballot 120 passed. Kirk Hall of TrendMicro made the following motion and Jeremy Rowley of DigiCert and Cecilia Kam of Symantec have endorsed it: Ballot 120 – Affiliate Authority to Verify Domain Reasons for proposed ballot Ballot 72 in May 2012 reorganized the EV Guidelines by moving certain definitions and common provisions to the Baseline Requirements and replacing them with cross references to the Baseline Requirements.
Ballot 122 – Verified Method of Communication (failed)
May 8, 2014 by Ben WilsonBallot 122 – Verified Method of Communication Voting on Ballot 122 closed. We received “yes” votes from Actalis, Buypass, Comodo, DigiCert, GlobalSign, GoDaddy, Izenpe, Logius PKIoverheid, QuoVadis, SECOM, Symantec, Trend Micro, Trustis, TURKTRUST, Visa, and WoSign OpenTrust and SSC abstained. Mozilla and Microsoft voted “no.” Therefore, Ballot 122 did not pass. The EV Guidelines Working Group has completed its review of Section 11.4.2 of the EV Guidelines (Telephone Number for Applicant’s Place of Business).
May 8, 2014 by Ben WilsonBallot 122 – Verified Method of Communication Voting on Ballot 122 closed. We received “yes” votes from Actalis, Buypass, Comodo, DigiCert, GlobalSign, GoDaddy, Izenpe, Logius PKIoverheid, QuoVadis, SECOM, Symantec, Trend Micro, Trustis, TURKTRUST, Visa, and WoSign OpenTrust and SSC abstained. Mozilla and Microsoft voted “no.” Therefore, Ballot 122 did not pass. The EV Guidelines Working Group has completed its review of Section 11.4.2 of the EV Guidelines (Telephone Number for Applicant’s Place of Business).
Ballot 121 – EV Guidelines Insurance Requirements(failed)
May 7, 2014 by Ben WilsonBallot 121 – EV Guidelines Insurance Requirements Voting has closed on Ballot 121. “Yes” votes were cast by Buypass, Disig, Firmaprofesional, GlobalSign, GoDaddy, Izenpe, OpenTrust, SSC, Trend Micro, Turktrust, and WoSign. “No” votes were cast by Actalis, DigiCert, QuoVadis, Symantec, and Mozilla. Abstentions were submitted by StartCom, Visa, and Google. Therefore, Ballot 121 failed. The EV Guidelines Working Group is considering updating the EV Guidelines in a number of areas. Kirk Hall of Trend Micro hereby makes the following motion, and Moudrick Dadashov from Skaitmeninio sertifikavimo centras (SSC) and Richard Wang from WoSign have endorsed it.
May 7, 2014 by Ben WilsonBallot 121 – EV Guidelines Insurance Requirements Voting has closed on Ballot 121. “Yes” votes were cast by Buypass, Disig, Firmaprofesional, GlobalSign, GoDaddy, Izenpe, OpenTrust, SSC, Trend Micro, Turktrust, and WoSign. “No” votes were cast by Actalis, DigiCert, QuoVadis, Symantec, and Mozilla. Abstentions were submitted by StartCom, Visa, and Google. Therefore, Ballot 121 failed. The EV Guidelines Working Group is considering updating the EV Guidelines in a number of areas. Kirk Hall of Trend Micro hereby makes the following motion, and Moudrick Dadashov from Skaitmeninio sertifikavimo centras (SSC) and Richard Wang from WoSign have endorsed it.
Ballot 112 – Replace Definition of “Internal Server Name” with “Internal Name”(passed)
April 3, 2014 by Ben WilsonBallot 112 – Replace Definition of “Internal Server Name” with “Internal Name” Votes in Favor: ANF, Buypass, Comodo, DigiCert, Disig, FirmaProfesional, GlobalSign, GoDaddy, Logius PKIoverheid, QuoVadis, Sertifitseerimiskeskus, SSC, StartCom, SwissSign, Symantec,Trend Micro, Trustis, TURKTRUST, TAIWAN-CA, WoSign, Mozilla and Google No abstentions or nay votes. Ballot passed. The current definition of Internal Server Name is ambiguous. It reads, “A Server Name (which may or may not include an Unregistered Domain Name) that is not resolvable using the public DNS.
April 3, 2014 by Ben WilsonBallot 112 – Replace Definition of “Internal Server Name” with “Internal Name” Votes in Favor: ANF, Buypass, Comodo, DigiCert, Disig, FirmaProfesional, GlobalSign, GoDaddy, Logius PKIoverheid, QuoVadis, Sertifitseerimiskeskus, SSC, StartCom, SwissSign, Symantec,Trend Micro, Trustis, TURKTRUST, TAIWAN-CA, WoSign, Mozilla and Google No abstentions or nay votes. Ballot passed. The current definition of Internal Server Name is ambiguous. It reads, “A Server Name (which may or may not include an Unregistered Domain Name) that is not resolvable using the public DNS.
Ballot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5(passed)
March 24, 2014 by Ben WilsonBallot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5 Yea: ANF, Certinomis, Comodo, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Google, Microsoft, and Mozilla. Nay: None Abstain: None Result: Ballot passed Rob Stradling of Comodo made the following motion, and Ben Wilson from DigiCert and Chema López González from AC Firmaprofesional S.A. have endorsed it. The EV Guidelines require certificates to include the jurisdiction where the Subject has registered or incorporated.
March 24, 2014 by Ben WilsonBallot 119 – Remove “OfIncorporation” from OID descriptions in EVG 9.2.5 Yea: ANF, Certinomis, Comodo, DigiCert, GlobalSign, Izenpe, Logius PKIoverheid, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustis, WoSign, Google, Microsoft, and Mozilla. Nay: None Abstain: None Result: Ballot passed Rob Stradling of Comodo made the following motion, and Ben Wilson from DigiCert and Chema López González from AC Firmaprofesional S.A. have endorsed it. The EV Guidelines require certificates to include the jurisdiction where the Subject has registered or incorporated.
Ballot 114 – Improvements to the EV Definitions(passed)
January 28, 2014 by Ben WilsonVoting on Ballot 114 closed on 28 January 2014 with votes cast as follows: Yes: ANF, Buypass, CERTUM, Comodo, DigiCert, GlobalSign, Logius PKIoverheid, QuoVadis, Symantec, Trend Micro, Trustis, TURKTRUST and Mozilla. No: None. Abstain: None. Result: Ballot passes Cecilia Kam from Symantec made the following motion, and Jeremy Rowley from DigiCert and Kirk Hall from Trend Micro endorsed it. This proposal clarifies the definition of Business Entities, Private Organizations, and Incorporating Agencies.
January 28, 2014 by Ben WilsonVoting on Ballot 114 closed on 28 January 2014 with votes cast as follows: Yes: ANF, Buypass, CERTUM, Comodo, DigiCert, GlobalSign, Logius PKIoverheid, QuoVadis, Symantec, Trend Micro, Trustis, TURKTRUST and Mozilla. No: None. Abstain: None. Result: Ballot passes Cecilia Kam from Symantec made the following motion, and Jeremy Rowley from DigiCert and Kirk Hall from Trend Micro endorsed it. This proposal clarifies the definition of Business Entities, Private Organizations, and Incorporating Agencies.
Ballot 89 – Publish Recommendations for the Processing of EV SSL Certificates v.2(passes)
January 17, 2014 by Ben WilsonVoting on Ballot 89 closed. Ten voted in favor – Buypass, Comodo, D-TRUST, DigiCert, GoDaddy, Izenpe, SSC, Symantec, Trend Micro, and Opera. Mozilla abstained. There were none opposed. Therefore, Ballot 89 passes. Motion Rick Andrews made the following motion, and Ben Wilson and Kirk Hall endorsed it: Motion begins The CA/Browser Forum authorizes the publication of “Recommendations for the Processing of Extended Validation SSL Certificates, v. 2.0” (available here: Recommendations for the Processing of EV SSL Certificates.
January 17, 2014 by Ben WilsonVoting on Ballot 89 closed. Ten voted in favor – Buypass, Comodo, D-TRUST, DigiCert, GoDaddy, Izenpe, SSC, Symantec, Trend Micro, and Opera. Mozilla abstained. There were none opposed. Therefore, Ballot 89 passes. Motion Rick Andrews made the following motion, and Ben Wilson and Kirk Hall endorsed it: Motion begins The CA/Browser Forum authorizes the publication of “Recommendations for the Processing of Extended Validation SSL Certificates, v. 2.0” (available here: Recommendations for the Processing of EV SSL Certificates.
Ballot 113 – Revision to QIIS in EV Guidelines(passes)
January 13, 2014 by Ben WilsonBallot 113 – Revision to QIIS in EV Guidelines Voting ended on 13 January 2014. Quorum was 6 and 21 votes were cast-20 by CAs and 1 by Browsers. Twenty votes were in favor of the amendment. Izenpe abstained. Therefore, the ballot passes. The following proposal comes from EV working group. Jeremy Rowley made the following motion, and Rich Smith and Kirk Hall have endorsed it. This ballot proposes a replacement to Section 11.
January 13, 2014 by Ben WilsonBallot 113 – Revision to QIIS in EV Guidelines Voting ended on 13 January 2014. Quorum was 6 and 21 votes were cast-20 by CAs and 1 by Browsers. Twenty votes were in favor of the amendment. Izenpe abstained. Therefore, the ballot passes. The following proposal comes from EV working group. Jeremy Rowley made the following motion, and Rich Smith and Kirk Hall have endorsed it. This ballot proposes a replacement to Section 11.
Ballot 111 – Accelerate Max Certificate Lifetime Reduction Timetable
December 4, 2013 by Ben WilsonBallot 111 – Accelerate Max Certificate Lifetime Reduction Timetable Gervase Markham (Mozilla) made the following motion, endorsed by Eddy Nigg from StartCom and Ryan Hurst from Globalsign: Motion begins The CAB Forum wishes to take advantage of the /de facto/ deprecation of the near-ubiquitous SHA-1 hash algorithm in the Web PKI and its 1 January 2017 retirement by accelerating the Forum’s planned move to shorter maximum certificate lifetimes, in order to attain a more agile certificate ecosystem.
December 4, 2013 by Ben WilsonBallot 111 – Accelerate Max Certificate Lifetime Reduction Timetable Gervase Markham (Mozilla) made the following motion, endorsed by Eddy Nigg from StartCom and Ryan Hurst from Globalsign: Motion begins The CAB Forum wishes to take advantage of the /de facto/ deprecation of the near-ubiquitous SHA-1 hash algorithm in the Web PKI and its 1 January 2017 retirement by accelerating the Forum’s planned move to shorter maximum certificate lifetimes, in order to attain a more agile certificate ecosystem.
Ballot 107 – Removing Version Numbers to WebTrust and ETSI Standards From CABF Guidelines
August 9, 2013 by Ben WilsonBallot 107 – Removing Version Numbers to WebTrust and ETSI Standards From CABF Guidelines (Withdrawn) Mads Henriksveen made the following motion, and Inigo Barreira from Izenpe and Kirk Hall from Trend Micro endorsed it: Motion Begins Baseline Requirements (BR) Document History Implementers’ Note: Version 1.1 of these SSL Baseline Requirements was published on September 14, 2012. Version 1.1 of WebTrust’s SSL Baseline Audit Criteria and ETSI Technical Standard Electronic Signatures and Infrastructures (ESI) 102 042 version 2.
August 9, 2013 by Ben WilsonBallot 107 – Removing Version Numbers to WebTrust and ETSI Standards From CABF Guidelines (Withdrawn) Mads Henriksveen made the following motion, and Inigo Barreira from Izenpe and Kirk Hall from Trend Micro endorsed it: Motion Begins Baseline Requirements (BR) Document History Implementers’ Note: Version 1.1 of these SSL Baseline Requirements was published on September 14, 2012. Version 1.1 of WebTrust’s SSL Baseline Audit Criteria and ETSI Technical Standard Electronic Signatures and Infrastructures (ESI) 102 042 version 2.