Draft Agenda for Face to Face meeting in Warsaw

106 views
Skip to first unread message

Dean Coclin

unread,
Oct 8, 2025, 2:32:19 PMOct 8
to 'Ben Wilson' via Public (CA/B Forum)

Here is the draft agenda for the subject meeting:

 

Wednesday, 15 October 2025 - Forum level (Day 1)

ALL TIMES LOCAL TO Warsaw, Poland

Start

Description

Discussion Leader / Notes

08:30

Check-in, get situated in room and virtual room, test audio/video

 

09:00

CA/Browser Forum Meeting

Dean Coclin (DigiCert)

09:00

Welcome, Preliminary Matters, Meeting Recordings, Photo Policy, Logistics, Antitrust Statement, Code of Conduct

Dean Coclin (DigiCert)

09:05

Welcome by host

Certum

09:15

- Take Attendance

- Assign Minute Takers

Tim Callan (Sectigo)

09:30

- Approval of F2F#66 Agenda

  • Approval of CABF Minutes from last teleconference
    - Future face to face meeting schedule

Dean Coclin (DigiCert)

 

 

 

09:40

- Introduction of F2F#66 meeting venue

Certum

09:45

Guest speaker: Andrea Rock, French Cybersecurity Agency

Challenges of automated issuance for QWACs and a possible approach 

Qualified certificates for website authentication (QWACs) as defined in regulation (EU) 910/2014 (eIDAS) have to follow strict requirements on the verification of the identity in addition to the requirements on certificates for website authentication. This leads to challenges, especially with the new rules of shorter lifetime of certificates. The presentation will describe these challenges and will show an example how they might be solved in an automated manner as recommended in France and discussed by FESA

10:15

Break (30 min)

10:45

Guest speaker: Alexandre Keck, CEO, GLEIF

Trusted Identities for a Trusted Web: LEI and vLEI in the Digital Certificate Ecosystem

 

This discussion will present how the Legal Entity Identifier (LEI) and verifiable LEI (vLEI) can enhance digital trust across the internet. It will focus on ISO 17442-2 (LEI in X.509), ISO 17442-3 (LEI in Verifiable Credentials), and ISO 5009 (official organizational roles). Attendees will gain insights into practical use cases where LEI-based credentials improve certificate trust, identity assurance, and interoperability.

 

 

11:15

CA proposed topics

1. Dossier (Corey Bonnell - DigiCert)
Description:

11:45

Panel Q&A with all speakers

Dean Coclin (DigiCert) Minutes

12:00

Lunch (60 min)

13:00

Mozilla Root Program Update

Ben Wilson (Mozilla) Minutes: 

13:15

Cisco Root Program Update

Chad Dandar (Cisco) Minutes:

13:30

Apple Root Program Update

Clint Wilson (Apple) Minutes: 

13:45

Chrome Root Program Update

Chris Clements (Google) Minutes:

14:00

Microsoft Root Program Update

Karina Sirota (Microsoft) Minutes: 

14:15

CCADB Update

Chris Clements (Google) Minutes: 

14:30

Q&A Root program discussions

Dean Coclin (DigiCert) Minutes:  

15:00

Break (30 min)

 

15:30

ETSI Update

Iñigo Barreira (Representing ETSI ESI) Minutes: Clemens (ACAB'c)

15:45

ACAB'c Update

Clemens Wanko (ACAB'c WG1 ) Minutes: Iñigo (ETSI)

16:00

WebTrust Update

Tim Crawford (BDO - WebTrust TF), Lilia Dubko (CPA Canada) Minutes: 

16:15

Q&A Audits and Standards

Dean Coclin (DigiCert) Minutes: 

16:45

End of day one

 

 

18:30

Social Event: 18:30 - 21:30 

 

 

Thursday, 16 October 2025 - Forum level / Working Groups (Day 2)

Start

Description

Discussion Leader / Notes

08:30

Get situated in Room and virtual room, test audio/video

 

09:00

Infrastructure subcommittee

Jos Purvis (Fastly) Minutes

09:30

IPR Subcommittee and Bylaws Changes, Github comment management

 

Key Issues

  1. Consistency Across Platforms – Historically, discussions were limited to mailing lists. GitHub introduces more open and visible commenting, and the Forum needs to decide the role that GitHub plays as a communications channel.
  2. Quality and Tone of Contributions – While some GitHub comments have provided useful technical input, others have been unproductive and sometimes caustic.
  3. IPR and Code of Conduct Concerns – Restrictions on GitHub commenting and/or a CLA could help ensure contributors agree to the Forum’s IPR terms and Code of Conduct, while mitigating risks from unsolicited contributions.
  4. Administrative and Moderation Burden – Moderating GitHub threads, closing or redirecting heated discussions, and managing access will require ongoing effort. Clear guidelines are needed on who applies moderation actions and under what criteria.

Some Options to Consider

  1. Limit Interactions to Members and Authorized Contributors – Restrict commenting to Forum members (and possibly interested parties), with controls managed through collaborator access. Interested parties could be read-only contributors with limited ability to comment.
  2. Prohibit or Lock Commenting –  Keep GitHub comments open by default, but use temporary interaction limits, conversation locks, etc. as needed if discussions become unproductive. (Trigger a GitHub option to disable comments partially or entirely.)  Then, redirect discussion to questions list, other mailing lists, or potentially GitHub Discussions.

Ben Wilson (Mozilla) Minutes: 

10:10

Definitions and Glossary Working Group

Tim Hollebeek (DigiCert)
Tim Callan (Sectigo)  Minutes: 

10:40

Break (20 min)

 

11:00

Network Security Working Group

 

Clint Wilson (Apple)

12:30

Lunch (60 min)

 

13:30

Rate of Change of CA/B Forum


This topic was raised by Miguel Sanchez (GTS) in the NSWG call. Tim will facilitate a discussion.

 

Tim Hollebeek (DigiCert)

14:00

Server Certificate Working Group

  1. Take attendance, read anti-trust statement, minute taker(s)
  2. Review Agenda
  3. Minutes and membership
    1. Approval of Minutes 
      • Sep 25, 2025 Teleconference (Draft minutes have not been distributed yet)
    2. Pending Membership applications
      • Derek R. Greene (as individual)
  4. Summary (5-10 minutes)
    1. Summary of this quarter (Dimitris)
  5. Topics

    1. Edits to §§4.9.1.1 and 7.2.2 on revocation reason codes (30 minutes) (Ben)
      • #4 superseded → administrative/lifecycle or compliance replacement (subscriber- or CA-initiated), explicitly not used for compromise, identity/validation errors, cessation, or misconduct.
      • #3 affiliationChanged → CA validation/identity error (including withdrawing any asserted binding of identity, domain, or IP)
      • #1 keyCompromise → clarified to include weak/incorrect keys/parameters, flawed generation/lack of randomness, systemic exposures (e.g., Heartbleed), or any case undermining cryptographic assurances.
      • Goal: converge on clearer, enforceable semantics for reason codes so CAs, subscribers, and relying party applications can interpret them consistently—and so ingestion pipelines (e.g., CRLite-like systems) can act on them predictably.
      • Proposal:
    2. Technically Constrained Subordinate CAs (30 minutes) (Ryan)
    3. Modifying the revocation requirements with an exception for CP/CPS discrepancies (30-40 minutes) (Dimitris - Wayne)
      • copy from previous F2F, not sure if there is a concrete proposal to present
    4. Discussion about upcoming ballots (30-40 minutes) (Ballot proposers)

      • SC086: Sunset the Inclusion of Address and Routing Parameter Area Names (Corey)
      • SC087: Registration Number Improvement for EV Certificates (Corey)
      • SC090: Gradually sunset all remaining email-based, phone-based, and 'crossover' validation methods from Sections 3.2.2.4 and 3.2.2.5 (Ryan)
      • SC-XXX: Cleanup for ADN CNAME use (Rich)
    5. GitHub open issues triage  (20-30 minutes) (Dimitris - Wayne)
  6. AOB (5-10 minutes)

Dimitris Zacharopoulos (HARICA)

15:30

Break (30 min) 

 

16:00

Continuation of the Server Certificate Working Group

17:00

End of day two

 

 

Friday, 17 October 2025 - Working Groups (Day 3)

 

Start

Description

Discussion Leader / Notes

08:30

Get situated in Room and virtual room, test audio/video

 

09:00

Welcome

Corey Bonnell (DigiCert)

09:05

Continuation of the Server Certificate Working Group

Validation Subcommittee

 

Corey Bonnell (DigiCert)

10:30

Break (30 min)

 

11:00

Code Signing Working Group Meeting

 

Agenda:

 

Martijn Katerbarg (Sectigo)

12:30

Lunch (60 min)

 

13:30

Continuation of the Code Signing Working Group

15:00

Break (30 min)

 

15:30

S/MIME Certificate Working Group

 

Agenda:

 

Stephen Davidson (DigiCert)

17:00

End of day three

Thanks, goodbye and safe travels

Certum

 

 

 

 

 

Dean Coclin

unread,
Oct 10, 2025, 5:29:13 PMOct 10
to pub...@groups.cabforum.org

Here is the final agenda for the subject meeting:

15:30

ETSI Update

Arno Fiedler Minutes: Clemens (ACAB'c)

15:45

ACAB'c Update

Clemens Wanko (ACAB'c WG1 ) Minutes: Arno Fiedler

Tom Zermeno

unread,
Oct 13, 2025, 10:30:25 AMOct 13
to pub...@groups.cabforum.org

I’ve noticed that the participation links are not yet available.  Do we have an estimate of when they will be posted to the wiki?

 

-Tom

--
You received this message because you are subscribed to the Google Groups "Public (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to public+un...@groups.cabforum.org.
To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/public/PH8PR14MB7110721CC14795079ED22F4892EFA%40PH8PR14MB7110.namprd14.prod.outlook.com.

Tom Zermeno

unread,
Oct 13, 2025, 10:39:51 AMOct 13
to pub...@groups.cabforum.org
Reply all
Reply to author
Forward
0 new messages