<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Georgia;
panose-1:2 4 5 2 5 4 5 2 3 3;}
@font-face
{font-family:"Times New Roman \(Body CS\)";
panose-1:2 11 6 4 2 2 2 2 2 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.EmailStyle19
{mso-style-type:personal-reply;
font-family:"Georgia",serif;
color:windowtext;
font-weight:normal;
font-style:normal;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style></head><body lang=EN-US link=blue vlink=purple style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal><span style='font-family:"Georgia",serif'>These were published to the website:<o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Georgia",serif'> <a href="https://cabforum.org/2021/08/19/2021-08-05-minutes-of-the-ca-browser-forum-teleconference/">https://cabforum.org/2021/08/19/2021-08-05-minutes-of-the-ca-browser-forum-teleconference/</a><o:p></o:p></span></p><p class=MsoNormal><span style='font-family:"Georgia",serif'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Georgia",serif'><o:p> </o:p></span></p><div><p class=MsoNormal><span style='font-size:9.0pt;font-family:Consolas;color:black'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:9.0pt;font-family:Consolas;color:black'>-- <br>Jos Purvis (</span><a href="mailto:jopurvis@cisco.com"><span style='font-size:9.0pt;font-family:Consolas;color:#954F72'>jopurvis@cisco.com</span></a><span style='font-size:9.0pt;font-family:Consolas;color:black'>)<br>.:|:.:|:. cisco systems | Cryptographic Services<br>PGP: 0xFD802FEE07D19105 | Controls and Trust Verification</span><o:p></o:p></p></div><p class=MsoNormal><span style='font-family:"Georgia",serif'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-family:"Georgia",serif'><o:p> </o:p></span></p><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal style='margin-bottom:12.0pt'><b><span style='font-size:12.0pt;color:black'>From: </span></b><span style='font-size:12.0pt;color:black'>Public <public-bounces@cabforum.org> on behalf of Dean Coclin via Public <public@cabforum.org><br><b>Date: </b>Thursday, 19 August, 2021 at 12:12<br><b>To: </b>CABforum1 <public@cabforum.org><br><b>Subject: </b>[cabfpub] Final Minutes of the CA/B Forum meeting August 5, 2021<o:p></o:p></span></p></div><div><p class=MsoNormal><br>Attendees: Ali Gholami (Telia), Andrea Holland (SecureTrust), Ben Wilson<br>(Mozilla), Chris Kemmerer (SSL.com), Clint Wilson (Apple), Corey Bonnell<br>(Digicert), Dean Coclin (Digicert), Dimitris Zacharopoulos (HARICA), Doug<br>Beattie (GlobalSign), Hazhar Ismail (MSC Trustgate), Inaba Atsushi<br>(GlobalSign), Inigo Barreira (Sectigo), Janet Hines (SecureTrust), Johnny<br>Reading (GoDaddy), Jos Purvis (Cisco Systems), Kati Davids (GoDaddy), Mads<br>Henriksveen (Buypass AS), Mike Reilly (Microsoft), Niko Carpenter<br>(SecureTrust), Pedro Fuentes (OISTE Foundation), Peter Miskovic (Disig),<br>Rebecca Kelley (Apple), Ryan Sleevi (Google), Shelley Brewer (Digicert),<br>Stephen Davidson (Digicert), Tadahiko Ito (SECOM Trust Systems), Tobias<br>Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Wayne Thayer<br>(Mozilla), Wendy Brown (US Federal PKI Management Authority), Natalia<br>Kotliarsky (SecureTrust), Brittany Randall (GoDaddy), Tyler Myers (GoDaddy),<br>Fumihiko Yoneda (Japan Registry Services), Yoshiro Yoney a (Japan Registry<br>Services), Mike Min (GoDaddy), Rachel McPherson (Trustcor), Jose Guzman<br>(GoDaddy)<br><br>1. Read Antitrust Statement<br><br>Jos Purvis read the antitrust statement.<br><br>2. Roll Call<br><br>Dean Coclin read the roll.<br><br>3. Review Agenda<br><br>No changes were made to the agenda.<br><br>4. Approval of minutes from last teleconference<br><br>* July 8 minutes were approved<br>* July 22 minutes were approved<br><br>5. Forum Infrastructure Subcommittee update<br><br>* Met on 28 July. Covered version packet implemented in GitHub.<br>Gives ability to see which pull request made changes to a document. Tags go<br>back only a few versions for documents but will be complete going forward.<br>* Redlines is the next thing they are digging into for ballot process.<br>Moving to an automated process. In recent ballot had some redline problems<br>with how MSWord was functioning.<br><br>6. Code Signing Certificate Working Group update<br><br>* CSC 9 in voting period. Ends today and looks like it will pass<br>* CSC 10 will go to ballot shorting which will clarify WebTrust<br>version 2 audit criteria<br>* Discussed moving the CS BRs to the new format. Dimitris created a<br>Google doc to help map the migration from old to new format<br>* Moving out next session on signing services to September<br><br>7. S/MIME Certificate Working Group update<br><br>* Met on 4 Aug. Over past two sessions clarifying direction on<br>profiles, common terminology, etc. This is resetting the certificate<br>profiles. How Corporate certs were being used was complicating the approach<br>for profiles. Resetting the terminology will help move forward. Profile<br>will include:<br><br> * Mailbox<br> * Legal person<br> * Natural person<br><br>* Good, positive discussion in the last two meetings.<br><br>8. REMINDER: Fall F2F Dates: Oct 12-14<br><br>* Reminder of the dates for upcoming f2f. Once Karina is back the<br>sign up page will be set up and ready to go<br>* Keeping an eye on the COVID situation for future F2F meeting impacts<br><br>9. Any Other Business<br><br>Yoshiro Yoneya asked if anyone had attended the IETF meetings last week.<br>Any updates?<br><br>Ryan stated that Google, DigiCert (Tim Hollebeek) were involved in the LAMPS<br>discussion. ACME was covered. DigiCert is working in the LAMPS group.<br>Document signing EKU creation was discussed. Google is not supportive for<br>many reasons. Long discussions on this topic in the IETF meeting and best<br>to review the minutes: (<a href="https://datatracker.ietf.org/doc/minutes-111-acme/">https://datatracker.ietf.org/doc/minutes-111-acme/</a>)<br><br>Where CABF comes in? Ryan doesn't think this EKU makes sense and he's<br>advocated that if this is important for the CABF (e.g. SMIME Working Group)<br>then there is an opportunity for orgs (e.g. ETSI) or CABF to charter a work<br>group to define what a document signing cert would look like and how would<br>it be used. IETF has not adopted anything at this point so the question is<br>if the CABF needs to adopt a position.<br><br>Tadahiko Ito stated there is a demand to have a public document signing EKU<br>for not using emailProtection certs for (non-email)document signing. There<br>might be different ways of realizing EKUs for that purpose.<br><br>UTA (Using TLS in Applications) is also a topic being discussed in IETF.<br>Details can be found in the IETF minutes<br><br>10. Next call: August 19th, 2021 at 11AM Eastern<br><br>Adjourn<o:p></o:p></p></div></div></body></html>