Voting Period Begins - Ballot SC-095v2: 2025 Cleanup

[Kateryna Aleksieieva]

Summary of the Ballot

This ballot introduces a set of updates across the Baseline Requirements and EV Guidelines to improve clarity, consistency, definitions, and structural correctness. More details are available in the Pull Request. Changes fall into the following categories:

 

Formatting, References, and Consistency Improvements

(#193, #299, #322, #415, #432, #458, #542, #570, #574, #576, #584, #592)
Standardization of formatting (dates, tables, headers, lists, bolding, punctuation, hyphens), correction of links and anchors, typos, cleanup of spacing and duplicated text, harmonization of RFC references and URL formats, and removal of obsolete or redundant editorial content. All relevant dates before 2025-01-01 removed.

Definition Updates and Clarifications

(#303, #428, #435, #449, #471, #496, #512, #524, #564, #592)
Updates to definitions and terminology, removal of outdated code-signing wording, corrections to WHOIS and NTR definitions, clarification of delegation and validation reuse rules, alignment of language between BR and EV sections, addition of a “Precertificate” definition, and removal of legacy notes or outdated Relevant Dates.

Section-Specific Fixes

(#432, #452, #458, #546, #570, #444, #274)
Corrections to numbering, indentation, spacing, table structure, missing sections, example restoration/removal, adjustments to size limits, and updates to validation-method names and formatting.

Normative Adjustments

(#540, #547)
Refinements to normative requirements (MUST NOT → SHOULD NOT), removal of outdated effective-date notes, and header updates.

Correction to EVG 7.1.4.2.6

(#623)
Replacement of an obsolete BR reference with a self-contained definition of the Subject’s Physical Address of Place of Business, including OIDs, attribute requirements, and verified content rules.

Clarification to EVG 3.2.2.14.1

(#642)
RDAP should be used the same way as WHOIS.

Clarification of the "Certificate Profile" defined term

(#526)
The definition was updated per https://github.com/cabforum/servercert/pull/639

Update Section 4.9.1.1 to explicitly reference CAA violations

(#580)
This is a normative change clarifying that CAA violations are treated as part of the Domain Validation process. This was already the expected behavior as discussed in various CABF SCWG meetings.

---

 

The following motion has been proposed by Karolina Ruszczyńska (Certum by Asseco) and Kateryna Aleksieieva (Certum by Asseco) and endorsed by Dimitris Zacharopoulos (HARICA) and Wayne Thayer (Fastly).

 

--- Motion Begins ---

This ballot modifies the “Baseline Requirements for the Issuance and Management of Publicly-Trusted TLS Server Certificates” (“Baseline Requirements”), based on Version 2.1.9

This ballot modifies the “Guidelines for the Issuance and Management of Extended Validation Certificates” (“Extended Validation Guidelines”), based on Version 2.0.1

Redline: https://github.com/cabforum/servercert/compare/351f2755443ff78093d1b62b0b8a251ef6d8fc2d 

 

--- Motion Ends ---

This ballot proposes a Final Maintenance Guideline. The procedure for approval of this ballot is as follows:

 

Discussion (at least 7 days)

• Start time: 2026-01-26 17:00:00 UTC

• End time: 2026-02-02 17:00:00 UTC

Vote for approval (7 days)

• Start time: 2026-02-02 17:00:00 UTC

• End time: 2026-02-09 17:00:00 UTC

 

[Ben Wilson]

Mozilla votes "Yes" on Ballot SC-095v2

--
You received this message because you are subscribed to the Google Groups "Server Certificate WG (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to servercert-w...@groups.cabforum.org.
To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/servercert-wg/DU0PR10MB72643E4485B6EA401E1B9D73819AA%40DU0PR10MB7264.EURPRD10.PROD.OUTLOOK.COM.

[Pedro FUENTES]

OISTE Votes Yes to SC-095v2

To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/servercert-wg/CA%2B1gtaY_DUroS5bWnSfCeEkrVq5TrtYgbO8ZFTu%3DhkwXbjneqw%40mail.gmail.com.

WISeKey SA

Pedro Fuentes
CSO - Trust Services Manager
Office: + 41 (0) 22 594 30 00
Mobile: + 41 (0) 791 274 790

Address: Avenue Louis-Casaï 58 | 1216 Cointrin | Switzerland

Stay connected with WISeKey

THIS IS A TRUSTED MAIL: This message is digitally signed with a WISeKey identity. If you get a mail from WISeKey please check the signature to avoid security risks

CONFIDENTIALITY: This email and any files transmitted with it can be confidential and it’s intended solely for the use of the individual or entity to which they are addressed. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. If you have received this email in error please notify the sender

DISCLAIMER: WISeKey does not warrant the accuracy or completeness of this message and does not accept any liability for any errors or omissions herein as this message has been transmitted over a public network. Internet communications cannot be guaranteed to be secure or error-free as information may be intercepted, corrupted, or contain viruses. Attachments to this e-mail are checked for viruses; however, we do not accept any liability for any damage sustained by viruses and therefore you are kindly requested to check for viruses upon receipt.

[黃晟(orca)]

TWCA votes “Yes” on ballot SC-095v2.

 

 

Regards,

 

Sean Huang

Senior R&D Engineer
TEL：02-2370-8886#728
FAX：02-2388-6720
Email：or...@twca.com.tw

10F., No. 85, Yanping South Road,

Taipei, Taiwan (R.O.C.)

--

[Dimitris Zacharopoulos (HARICA)]

HARICA votes "yes" to ballot SC-095v2.

--

[Marco Schambach]

IdenTrust votes ‘Yes” on SC-095v2

 

Marco S.

TrustID Program Manager

 

From: 'Kateryna Aleksieieva' via Server Certificate WG (CA/B Forum) <server...@groups.cabforum.org>

Sent: Monday, February 2, 2026 11:13 AM
To: server...@groups.cabforum.org

--

[郭宗閔]

Chunghwa Telecom votes "Yes" on Ballot SC-095v2

 

Regards,

Tsung-Min Kuo

Chunghwa Telecom Co., Ltd.

 

From: 'Kateryna Aleksieieva' via Server Certificate WG (CA/B Forum) <server...@groups.cabforum.org>

Sent: Tuesday, February 3, 2026 12:13 AM
To: server...@groups.cabforum.org

Subject: [外部郵件][Servercert-wg] Voting Period Begins - Ballot SC-095v2: 2025 Cleanup

--

You received this message because you are subscribed to the Google Groups "Server Certificate WG (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to servercert-w...@groups.cabforum.org.
To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/servercert-wg/DU0PR10MB72643E4485B6EA401E1B9D73819AA%40DU0PR10MB7264.EURPRD10.PROD.OUTLOOK.COM.

本信件可能包含中華電信股份有限公司機密資訊,非指定之收件者,請勿蒐集、處理或利用本信件內容,並請銷毀此信件. 如為指定收件者,應確實保護郵件中本公司之營業機密及個人資料,不得任意傳佈或揭露,並應自行確認本郵件之附檔與超連結之安全性,以共同善盡資訊安全與個資保護責任.
Please be advised that this email message (including any attachments) contains confidential information and may be legally privileged. If you are not the intended recipient, please destroy this message and all attachments from your system and do not further collect, process, or use them. Chunghwa Telecom and all its subsidiaries and associated companies shall not be liable for the improper or incomplete transmission of the information contained in this email nor for any delay in its receipt or damage to your system. If you are the intended recipient, please protect the confidential and/or personal information contained in this email with due care. Any unauthorized use, disclosure or distribution of this message in whole or in part is strictly prohibited. Also, please self-inspect attachments and hyperlinks contained in this email to ensure the information security and to protect personal information.