[Approved] Minutes of SMCWG February 25, 2026
Stephen Davidson
February 25, 2026
These are the Minutes of the meeting described in the subject of this message. Corrections and clarifications where needed are encouraged by reply.
________________________________________
1. Roll Call
________________________________________
2. Note well: Antitrust / Compliance Statement
________________________________________
3. Approval of past minutes
The following minutes were approved:
* January 28
* February 11
Minutes provided by Stephen Davidson.
________________________________________
4. Review Agenda
________________________________________
5. Membership
NA
________________________________________
6. Discussion
* Stephen Davidson noted that SMC015v2 was shortly to conclude voting in a successful ballot.
* The WG reviewed the various compliance effective dates from the S/MIME BR and TLS BR that have an impact on the S/MIME issuance.
* The WG concluded that there was an impact for some email providers from the upcoming removal of clientAuth from TLS serverAuth certificates, but that was best handled by the email service community.
* The WG discussed draft Ballot SMC016: Equivalence with Ballots SC096 and SC097
https://github.com/cabforum/smime/compare/be9a18ab2b48eb0cbff41d3a268202f700c06c05...a746c65900ad673d9c2de0442248a6767c1a1b41
and proposed a new approach that will be discussed in a future meeting.
* The WG discussed potential topics for the F2F including pending changes to root program policy that affect S/MIME. Stephen invited members to contact him or Martijn Katerbarg with potential topics. He noted that Ryan Hurst would present at the F2F as a guest speaker on the use of mDLs for individual identity vetting, enabled by the SMCWG’s recent ballot SMC015v2.
________________________________________
7. Ballot Status Updates
* In Development: Ballot SMC016: Equivalence with Ballots SC096 and SC097
* In Discussion Period: NA
* In Voting Period: NA
* Under IPR Review: SMC015v2: Allow mDL for authentication of individual identity
* Approved and Effective: SMC014: DNSSEC for CAA (October 13)
________________________________________
7. Next meeting:
* March 12, 2026 at CABF #67 in Texas, see wiki.
________________________________________
8. Any other business
The teleconference of March 11, 2026 will be cancelled due to CABF #67.
________________________________________
9. Adjourn
Attendees:
Adam Folson (IdenTrust), Adriano Santoni (Actalis S.p.A.), Andreas Henschel (D-TRUST), Ashish Dhiman (GlobalSign), Ben Wilson (Mozilla), Dustin Hollenback (Apple), Inaba Atsushi (GlobalSign), Iñigo Barreira (Sectigo), Judith Spencer (CertiPath), Karolina Ruszczyńska (Asseco Data Systems SA (Certum)), Kateryna Aleksieieva (Asseco Data Systems SA (Certum)), Lilia Dubko (CPA Canada/WebTrust), Luis Cervantes (SSL.com), Martijn Katerbarg (Sectigo), Mrugesh Chandarana (IdenTrust), Nome Huang (TrustAsia), Ono Fumiaki (SECOM Trust Systems), Rollin Yu (TrustAsia), Russ Housley (Vigil Security LLC), Sandy Balzer (SwissSign), Scott Rea (eMudhra), Sean Huang (TWCA), Stephen Davidson (DigiCert), Tadahiko Ito (SECOM Trust Systems), Tim Crawford (CPA Canada/WebTrust)