CA/Browser Forum
Home » Working Groups » Server Cert WG

Server Certificate Working Group

Officers

  • Chair: Dimitris Zacharopoulos (HARICA)
  • Vice Chair: Wayne Thayer (Fastly)

Charter

Server Certificate Working Group Charter

How to Join

Instructions are here.

Ballots

Server Certificate Working Group Ballots

Server Certificate WG Mailing List

https://groups.google.com/a/groups.cabforum.org/g/servercert-wg

Subcommittees

Validation Subcommittee

Mailing list - https://groups.google.com/a/groups.cabforum.org/g/validation

Members

Certification Authorities

Certificate Consumers

  • 360 Browser
  • Apple
  • Brave
  • Cisco Systems
  • Comodo Security Solutions
  • Google
  • Microsoft
  • Mozilla
  • Opera Software AS
  • QikFox Cybersecurity Systems Inc.

Associates

  • ACAB Council
  • CPA Canada/WebTrust
  • Keyfactor
  • tScheme
  • US Federal PKI Management Authority

Interested Parties

  • Akamai
  • Amir Omidi (Private Person)
  • Andrea Fossati
  • Andrew Ayer
  • Aprio
  • Arno Fiedler
  • Baker TIlly Malaysia
  • Certinomis
  • Certizen Limited
  • Cloudflare
  • Common Crypto Authority
  • Deloitte LLP
  • Derek Greene (private person)
  • Dong Yul Lee (Private Person)
  • EFF (Electronic Frontier Foundation)
  • Encryption Consulting
  • Envers
  • ETSI
  • Ganesh Mallaya (Private Person)
  • George Palmer (Private Person)
  • Henry Birge-Lee (Private person)
  • ICANN
  • India PKI Forum
  • Insta Advance OY
  • Joshua Garrett (Private Person)
  • Kenyon Abbott (private person)
  • KPMG AG
  • KPMG Netherlands
  • KPMG Taiwan
  • K Software LLC
  • Leader Telecom BV
  • Maria Merkel (Private Person)
  • Mark Gamache (Private Person)
  • Markmonitor
  • MSC Trustgate Sdn Bhd
  • Netflix
  • Peercraft
  • QuantuSS Network
  • Ryan Hurst (Private Person)
  • Sandelman Software Works
  • Schellman and Company LLC
  • Sergey Pavlovskiy (Private Person)
  • SGNR, LLC
  • SINAM Limited Liability Company
  • SKBS UG (haftungsbeschränkt)
  • TL Certification Centre Co., Ltd(泰尔认证中心有限公司)
  • TurkTrust
  • Unsung Limited
  • Xiaokang Wang (Private Person)
  • Yahoo Inc
  • Yinglan Lu (Private person)
  • Zane Ma (Private Person)
Server Cert WG
Latest releases
Server Certificate Requirements
SC092: Sunset use of Precertificate Signing CAs - Nov 4, 2025

Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.12 - Ballot SMC014 - Oct 13, 2025

This ballot introduces requirements that a Certificate Issuer MUST deploy DNSSEC validation back to the IANA DNSSEC root trust anchor on all DNS queries associated with CAA record lookups performed by the Primary Network Perspective, effective March 15, 2026. The ballot is intended to maintain consistency in the S/MIME Baseline Requirements with the requirements of Ballot SC-085 which implemented identical requirements in the TLS Baseline Requirements. Note: SC-085 also introduced requirements in TLS Baseline Requirements for the use of DNSSEC in domain control validation. These requirements are automatically adopted in the S/MIME BR by the email domain control methods that include a normative reference to section 3.2.2.4 of the TLS Baseline Requirements. The draft also includes minor corrections to web links in the text. This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Client Wilson (Apple) and Ashish Dhiman (GlobalSign).

Network and Certificate System Security Requirements
Version 2.0.5 (Ballot NS-008) - Jul 9, 2025

Edit this page
The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).