Ballot SMC012: Introduce ACME for S/MIME
Summary:
This ballot introduces a new method for validation of mailbox control, using ACME for S/MIME as defined in RFC 8823: Extensions to Automatic Certificate Management Environment for End-User S/MIME Certificates.
Although similar to the existing method (3.2.2.2) “Validating control over mailbox via email”, ACME for S/MIME has been defined in a new method in order to better describe how a CA’s ACME server may respond to a POST request by sending the Random Value token components via email and SMTP.
The S/MIME Certificate Working Group encourages the proposal of new methods to facilitate the validation of mailbox authorization or control.
The ballot also includes several minor typographic corrections, including a clarification in section 7.1.4.2.1 regarding the use of directoryName in the SAN extension.
This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Stefan Selbitschka (rundQuadrat) and Guillaume Amringer (Carillon).
— Motion Begins —
This ballot modifies the “Baseline Requirements for the Issuance and Management of Publicly-Trusted S/MIME Certificates” (“S/MIME Baseline Requirements”), based on Version 1.0.9.
MODIFY the Baseline Requirements as specified in the following Redline:
— Motion Ends —
This ballot proposes a Final Maintenance Guideline. The procedure for approval of this ballot is as follows:
Discussion (at least 7 days)
Voting for Approval
IP Review (30 Days)
Entrust abstains from ballot SMC012.
Bruce.
--
You received this message because you are subscribed to the Google Groups "S/MIME Certificate WG - Public (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
smcwg-public...@groups.cabforum.org.
To view this discussion visit
https://groups.google.com/a/groups.cabforum.org/d/msgid/smcwg-public/BL1PR14MB51432AA044D84E04433DB939E565A%40BL1PR14MB5143.namprd14.prod.outlook.com.
IdenTrust votes “Yes” on SMC012
Marco S.
TrustID Program Manager
From: 'Stephen Davidson' via S/MIME Certificate WG - Public (CA/B Forum) <smcwg-...@groups.cabforum.org>
Sent: Monday, May 26, 2025 12:47 PM
To: smcwg-...@groups.cabforum.org
--
--
Logius votes “Yes” on Ballot SMC-012
Kind regards,
Albert de Ruiter
Policy Authority PKIoverheid
Logius
Dienst Digitale Samenleving
Ministerie van Binnenlandse Zaken en Koninkrijksrelaties
........................................................................
M 06-22796535
........................................................................
Logius is continu op zoek naar nieuwe collega’s. Bekijk alle vacatures op onze website.
Samen zorgen we voor een digitale overheid die werkt voor iedereen
--
You received this message because you are subscribed to the Google Groups "S/MIME Certificate WG - Public (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
smcwg-public...@groups.cabforum.org.
To view this discussion visit
https://groups.google.com/a/groups.cabforum.org/d/msgid/smcwg-public/BL1PR14MB51432AA044D84E04433DB939E565A%40BL1PR14MB5143.namprd14.prod.outlook.com.
Carillon votes “yes” on SMC012.
--
You received this message because you are subscribed to the Google Groups "S/MIME Certificate WG - Public (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
To view this discussion visit
DigiCert votes YES on SMC-012.
-Tim
From: 'Stephen Davidson' via S/MIME Certificate WG - Public (CA/B Forum) <smcwg-...@groups.cabforum.org>
Sent: Monday, May 26, 2025 12:47 PM
--
Actalis votes “Yes”.
--
Sectigo votes yes
De: 'Stephen Davidson' via S/MIME Certificate WG - Public (CA/B Forum) <smcwg-...@groups.cabforum.org>
Enviado el: lunes, 26 de mayo de 2025 18:47
Para: smcwg-...@groups.cabforum.org
Asunto: [Smcwg-public] [Voting for Approval] Ballot SMC012: Introduce ACME for S/MIME
Ballot SMC012: Introduce ACME for S/MIME Summary: This ballot introduces a new method for validation of mailbox control, using ACME for S/MIME as defined in RFC 8823: Extensions to Automatic Certificate Management Environment for End-User S/MIME
ZjQcmQRYFpfptBannerStart
|
ZjQcmQRYFpfptBannerEnd
--
--
Disig votes „YES“ on Ballot SMC012: Introduce ACME for S/MIME.
Regards
Peter Miskovic
SSL.com votes “Yes” on SMC012.
-Tom
--
SECOM Trust Systems votes YES on Ballot SMC012.
Best regards,
ONO Fumiaki / 大野 文彰
SECOM Trust Systems Co., Ltd.
--
Telia Company votes YES on Ballot SMC012.
Best regards,
Pekka Lahtiharju
Senior Development Manager | Trust Services
Telia
To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/smcwg-public/TYCP286MB2733C6B002DA39D90DB02884AE62A%40TYCP286MB2733.JPNP286.PROD.OUTLOOK.COM.
D-TRUST votes YES on Ballot SMC012
KR
Andreas
--
Certum votes YES on Ballot SMC012
Kind regards,
Kateryna Aleksieieva
From: 'Stephen Davidson' via S/MIME Certificate WG - Public (CA/B Forum) <smcwg-...@groups.cabforum.org>
Sent: Monday, May 26, 2025 6:47 PM
To: smcwg-...@groups.cabforum.org
--
The voting period for SMC012: Introduce ACME for S/MIME has completed. The ballot has: PASSED
Voting Results
Certificate Issuers
16 votes in total:
* 15 voting YES: Actalis S.p.A., Asseco Data Systems SA (Certum), Carillon Information Security Inc., DigiCert, D-TRUST, GlobalSign, HARICA, IdenTrust, Logius PKIoverheid, MSC Trustgate Sdn Bhd, SECOM Trust Systems, Sectigo, SSL.com, SwissSign, Telia Company
* 0 voting NO:
* 1 ABSTAIN: Entrust
Certificate Consumers
2 votes in total:
* 2 voting YES: Mozilla, rundQuadrat
* 0 voting NO:
* 0 ABSTAIN:
Bylaws Requirements
1. Bylaw 2.3(6) requires:
* In order for a ballot to be adopted by the Forum, two‐thirds (2/3) or more of the votes cast by the Voting Members in the Certificate Issuer category must be in favour of the ballot. This requirement
was MET.
* at least fifty percent (50%) plus one (1) of the votes cast by the Voting Members in the Certificate Consumer category must be in favour of the ballot. This requirement was MET.
* At least one (1) Voting Member in each category must vote in favour of a ballot for the ballot to be adopted. This requirement was MET.
2. Bylaw 2.3(7) requires:
* A ballot result will be considered valid only when more than half of the number of currently active Voting Members has participated. The number of currently active Voting Members is the average number of Voting Member organizations that have participated
in the previous three (3) Forum Meetings and Forum Teleconferences.
* the quorum was 11 for this ballot. This requirement was MET.
This ballot now enters the IP Rights Review Period to permit members to review the ballot for relevant IP rights issues. This will be notified in a separate email.
NOTICE OF REVIEW PERIOD
This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this
Review Notice is attached to this email.
Summary of Review
Ballot for Review: https://cabforum.org/2025/05/19/ballot-smc-012/.
A redline is available at
https://cabforum.org/uploads/CA-Browser-Forum-SMIMEBR-1.0.10-Redline.pdf
Start of Review Period: 2025-06-02 18:00:00 UTC
End of Review Period: 2025-07-02 18:00:00 UTC
Members with any Essential Claim(s) to exclude must forward a written Notice to Exclude Essential Claims to the Working Group Chair (Stephen Davidson) and also submit a copy to the CA/B Forum public mailing list (pub...@groups.cabforum.org)
before the end of the Review Period. For details, please see the current version of the CA/Browser Forum Intellectual Property Rights Policy. (An optional template for submitting an Exclusion Notice is available at https://cabforum.org/wp-content/uploads/Template-for-Exclusion-Notice.pdf)