Final Minutes for the 2025-06-26 Validation Subcommittee Call
Corey Bonnell
These are the final minutes of the meeting indicated in the subject, as captured by Aaron Poulsen and approved at the validation-sc meeting on August 7th.
Meeting: 2025-06-26 Validation Subcommittee
Meeting facilitator: Corey Bonnell
Minute Taker: Aaron Poulsen
Attendees
Martijn Katerbarg - Sectigo, Janet Hines - VikingCloud, Kateryna Aleksieieva (Certum by Asseco), Gurleen Grewal - GTS, ONO Fumiaki - SECOM, Michelle Coon, Johnny Reading - GoDaddy, Adriano Santoni, Mahua Chaudhuri (Microsoft), Enrico Entschew/ D-Trust, Aaron Poulsen - Amazon Trust Services, Corey Rasmussen, Pedro Fuentes [WISeKey], Michael Slaughter (Amazon Trust Services), Chris Clements, Henry Birge-Lee, Stephen Davidson (DigiCert), Nate Smith - GoDaddy, Ben Wilson - Mozilla, Aaron Gable - ISRG, Scott Rea - eMudhra, Corey Bonnell, Luis Osses (Amazon Trust Services), Doug Beattie - Globalsign, Nargis Mannan - Viking Cloud, Nome Huang - TrustAsia, Rollin Yu - TrustAsia, Wendy Brown - FPKIMA, [WISeKey] Jaime Hablutzel, Clint Wilson, Kate Xu – TrustAsia
Intro
Corey read the note-well and indicated the minutes for our recent face-to-face meeting are not quite ready for approval.
Corey continued to present the agenda. No other items were added.
SC-088, CA-Assisted DCV
Slaughter (Amazon Trust Services) presented updates from recent discussion threads concerning SC-088. The group reviewed proposed changes to clarify language around persistent DCV domain labels – in the GitHub comments, there was general agreement to replace the term “subdomain” with “label”, and “domain being validated” to “authorization domain name”. Slaughter also discussed adding an optional expiry parameter to TXT records. There was deeper discussion about how this expiry parameter would interact with existing validation reuse periods and DNS TTLs, with general agreement that the concept was valuable but needed clearer naming and documentation to avoid confusion. It was suggested that examples be added to the ballot to reduce confusion and assist with consistent interpretation. Slaughter requested that if anyone have updates or textual suggestions to please let him know or add them to the PR.
High Risk Request update
The Amazon Trust Services team confirmed they will be creating a ballot proposal to remove high-risk check requirements from the BRs and EVGs, though no specific updates were available yet.
Validation Summit planning
The subcommittee discussed planning for an upcoming Validation Summit, similar to one held in 2018. It was agreed a survey for CAs about validation methods and their usage should be developed and distributed using a CABF mailing list instead of CCADB. The survey would start with basic questions about which validation methods CAs use and how frequently they’re used. The summit audience will primarily be forum members, though outside security experts may be invited. Next steps include sending an email to the validation subcommittee to begin gathering survey questions. It was agreed that questions will focus on currently valid methods and not those we plan to be deprecate soon.
Outro
No other business was raised for discussion. The next Validation call is scheduled for 2025-07-10. Corey adjourned the meeting.
Thanks,
Aaron
--
You received this message because you are subscribed to the Google Groups "Management (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to management+...@groups.cabforum.org.
To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/management/b7ce9b7d-57a9-44be-b7ae-ca383ff422e5n%40groups.cabforum.org.