CA/Browser Forum posts
Posts by tag Server Certificates
Ballot 135 – ETSI Auditor Qualifications (passed)
October 16, 2014 by Ben WilsonBallot 135 – ETSI Auditor Qualifications Voting on Ballot 135 – ETSI Auditor Qualifications closed on 16 October 2014.
October 16, 2014 by Ben WilsonBallot 135 – ETSI Auditor Qualifications Voting on Ballot 135 – ETSI Auditor Qualifications closed on 16 October 2014.
Ballot 134 – Application of RFC 5280 to Pre-certificates
October 16, 2014 by Ben WilsonBallot 134 – Application of RFC 5280 to Pre-certificates Voting on Ballot 134 – Application of RFC 5280 to Pre-certificates closed on 16 October 2014.
October 16, 2014 by Ben WilsonBallot 134 – Application of RFC 5280 to Pre-certificates Voting on Ballot 134 – Application of RFC 5280 to Pre-certificates closed on 16 October 2014.
Ballot 123 – Reuse of Information (passed)
October 16, 2014 by Ben WilsonVoting on Ballot 123 – Reuse of Information closed on 16 October 2014. The Chair received “yes” votes from Actalis, ANF, Buypass, Certinomis, Chunghwa Telecom, Comodo, DigiCert, Disig, Entrust, GlobalSign, GoDaddy, Google, Izenpe, Kamu Sertifikasyon Merkezi, Logius PKIoverheid, Microsoft, Mozilla, Opentrust, QuoVadis, SSC, Symantec, Trend Micro, TURKTRUST, TWCA, and WoSign. Opera abstained. Therefore, Ballot 123 passed. This is the ballot from the EV working group that attempts to clarify the language in 11.14 (11.13 previous to the verified method of communication ballot) without changing any of the requirements. Previous section 11.13 was poorly organized with lots of semi-conflicting statements on when data re-verification was required. Changes were not tracked in this ballot as every single section was moved or rewritten, making any comparison futile.
October 16, 2014 by Ben WilsonVoting on Ballot 123 – Reuse of Information closed on 16 October 2014. The Chair received “yes” votes from Actalis, ANF, Buypass, Certinomis, Chunghwa Telecom, Comodo, DigiCert, Disig, Entrust, GlobalSign, GoDaddy, Google, Izenpe, Kamu Sertifikasyon Merkezi, Logius PKIoverheid, Microsoft, Mozilla, Opentrust, QuoVadis, SSC, Symantec, Trend Micro, TURKTRUST, TWCA, and WoSign. Opera abstained. Therefore, Ballot 123 passed. This is the ballot from the EV working group that attempts to clarify the language in 11.14 (11.13 previous to the verified method of communication ballot) without changing any of the requirements. Previous section 11.13 was poorly organized with lots of semi-conflicting statements on when data re-verification was required. Changes were not tracked in this ballot as every single section was moved or rewritten, making any comparison futile.
Ballot 118 – SHA-1 Sunset (passed)
October 16, 2014 by Ben WilsonVoting on Ballot 118 – SHA-1 Sunset closed on 16 October 2014. The Chair received “yes” votes from Actalis, ANF, Buypass, Certinomis, Chunghwa Telecom, Comodo, DigiCert, Disig, Entrust, GlobalSign, GoDaddy, Google, Izenpe, Kamu Sertifikasyon Merkezi, Logius PKIoverheid, Microsoft, Mozilla, Opentrust, Opera, QuoVadis, SSC, StartCom, Symantec, Trend Micro, TURKTRUST, TWCA, and WoSign. SECOM Trust Systems voted no. There were no abstentions. Therefore, Ballot 118 passed. Kelvin Yiu of Microsoft made the following motion, and Kirk Hall from Trend Micro and Ryan Sleevi from Google have endorsed it.
October 16, 2014 by Ben WilsonVoting on Ballot 118 – SHA-1 Sunset closed on 16 October 2014. The Chair received “yes” votes from Actalis, ANF, Buypass, Certinomis, Chunghwa Telecom, Comodo, DigiCert, Disig, Entrust, GlobalSign, GoDaddy, Google, Izenpe, Kamu Sertifikasyon Merkezi, Logius PKIoverheid, Microsoft, Mozilla, Opentrust, Opera, QuoVadis, SSC, StartCom, Symantec, Trend Micro, TURKTRUST, TWCA, and WoSign. SECOM Trust Systems voted no. There were no abstentions. Therefore, Ballot 118 passed. Kelvin Yiu of Microsoft made the following motion, and Kirk Hall from Trend Micro and Ryan Sleevi from Google have endorsed it.
Ballot 125 – CAA Records (passed)
October 14, 2014 by Ben WilsonBallot 125 – CAA Records Voting on Ballot 125 – CAA Records closed on 14 October 2014.
October 14, 2014 by Ben WilsonBallot 125 – CAA Records Voting on Ballot 125 – CAA Records closed on 14 October 2014.
Ballot 131 – Update to Verified Method of Communication (passed)
September 12, 2014 by Ben WilsonVoting on Ballot 131 (Update to Verified Method of Communication) closed last Friday. Voting in favor were: Actalis, Buypass, Comodo, DigiCert, Disig, Entrust, GlobalSign, GoDaddy, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustwave, Trustis, TURKTRUST, WoSign and Mozilla. There were no votes against and no abstentions. Therefore, Ballot 131 passed. Ballot 131 – Update to Verified Method of Communication The EV Guidelines Working Group has revisited Section 11.4 of the EV Guidelines (Applicant’s Physical Existence) and has decided that it is best to split it into two separate sections. Section 11.4.1 would remain as is for “Address of Applicant’s Place of Business.” Section 11.4.2 would be moved to its own section–a new 11.5, and all subsequent section numbers in 11 would be renumbered accordingly. The new Section 11.5 will focus on a verified means for communicating with the organization to be named as the subject in the certificate (to verify the authority of EV roles and ensure that it was appropriately aware of the certificate request).
September 12, 2014 by Ben WilsonVoting on Ballot 131 (Update to Verified Method of Communication) closed last Friday. Voting in favor were: Actalis, Buypass, Comodo, DigiCert, Disig, Entrust, GlobalSign, GoDaddy, OpenTrust, QuoVadis, SECOM Trust, SSC, StartCom, Symantec, Trend Micro, Trustwave, Trustis, TURKTRUST, WoSign and Mozilla. There were no votes against and no abstentions. Therefore, Ballot 131 passed. Ballot 131 – Update to Verified Method of Communication The EV Guidelines Working Group has revisited Section 11.4 of the EV Guidelines (Applicant’s Physical Existence) and has decided that it is best to split it into two separate sections. Section 11.4.1 would remain as is for “Address of Applicant’s Place of Business.” Section 11.4.2 would be moved to its own section–a new 11.5, and all subsequent section numbers in 11 would be renumbered accordingly. The new Section 11.5 will focus on a verified means for communicating with the organization to be named as the subject in the certificate (to verify the authority of EV roles and ensure that it was appropriately aware of the certificate request).
Ballot 129 – PSL in BR 11.1.3 (passed)
August 4, 2014 by Ben WilsonVoting on Ballot 129 closed on 4 August 2014. Voting in Favor were: DigiCert, Disig, GlobalSign, GoDaddy, Symantec, Trend Micro, Trustwave, WoSign, and Mozilla. None were opposed and none abstained. Quorum was met and Ballot 129 passed resulting in Baseline_Requirements_V1_1_9. Gerv Markham of Mozilla made the following motion, and Ben Wilson from Digicert and Rick Andrews from Symantec have endorsed it. Reason for Ballot This ballot simply clarifies how to use the “Public Suffix List” (PSL) in Section 11.1.3 of the Baseline Requirements. The explanation in the footnote to section 11.1.3 of the Baseline Requirements about how to use the PSL is ambiguous because the PSL has two sections–the “ICANN DOMAINS” section and the “PRIVATE DOMAINS” section. Therefore, clarification is needed to explain that it is the ICANN DOMAINS section of the PSL that CAs should use.
August 4, 2014 by Ben WilsonVoting on Ballot 129 closed on 4 August 2014. Voting in Favor were: DigiCert, Disig, GlobalSign, GoDaddy, Symantec, Trend Micro, Trustwave, WoSign, and Mozilla. None were opposed and none abstained. Quorum was met and Ballot 129 passed resulting in Baseline_Requirements_V1_1_9. Gerv Markham of Mozilla made the following motion, and Ben Wilson from Digicert and Rick Andrews from Symantec have endorsed it. Reason for Ballot This ballot simply clarifies how to use the “Public Suffix List” (PSL) in Section 11.1.3 of the Baseline Requirements. The explanation in the footnote to section 11.1.3 of the Baseline Requirements about how to use the PSL is ambiguous because the PSL has two sections–the “ICANN DOMAINS” section and the “PRIVATE DOMAINS” section. Therefore, clarification is needed to explain that it is the ICANN DOMAINS section of the PSL that CAs should use.
Ballot 126 – Operational Existence (passed)
July 24, 2014 by Ben WilsonVoting on Ballot 126 closed on 24 July 2014. Voting in favor were Comodo, DigiCert, Network Solutions, QuoVadis, Symantec, Trend Micro, WoSign, and Mozilla. Visa abstained. Quorum was met and Ballot 126 passed, resulting in EV SSL Certificate Guidelines Version 1.5.0. Ballot 126 – Operational Existence Jeremy Rowley of Digicert made the following motion and Cecilia Kam of Symantec and Doug Beattie of GlobalSign have endorsed it:
July 24, 2014 by Ben WilsonVoting on Ballot 126 closed on 24 July 2014. Voting in favor were Comodo, DigiCert, Network Solutions, QuoVadis, Symantec, Trend Micro, WoSign, and Mozilla. Visa abstained. Quorum was met and Ballot 126 passed, resulting in EV SSL Certificate Guidelines Version 1.5.0. Ballot 126 – Operational Existence Jeremy Rowley of Digicert made the following motion and Cecilia Kam of Symantec and Doug Beattie of GlobalSign have endorsed it: