Final Minutes of the February 19th, 2026 Validation Subcommittee call

[Corey Bonnell]

These are the final minutes of the teleconference described in the subject of this message as prepared by Martijn Katerbarg. These minutes were approved at the Validation Subcommittee call on April 2nd, 2026.

 

 

# Validation Subcommittee Meeting Minutes  

 

## Note Well

The Note Well was read

 

## Agenda

• Additional topic: validation data sources

 

## Approval of Minutes

• 22 January Meeting

• 5 February Meeting

• All approved.

 

## Discussion Topics

### Validation Data Sources

• Scott raised the topic of creating a definition of authoritative/reliable validation data sources and noted lack of guidance in current requirements

• May be discussed at F2F if time allows

 

### Ballot Endorsement - CAA parameters

• Wayne Thayer requested endorsement for RFC 8657-related ballot (CAA parameters)

• Google already endorsed

• Mozilla agreed to endorse

• Ballot expected to proceed

 

 

### F2F Agenda Planning

• Meeting moved to Tuesday

 

### Topics

• ADN Improvement Ballot as primary topic

• Plan:

      - Continue mailing list discussion

      - Possibly align positions before F2F

      - At F2F:

      - Present consensus or differing views

        - Discuss concrete use cases / edge cases

 

### Validation Data Sources (Scott Rea)

- ~5 min intro + discussion

- Focus:

  - Lack of guidance on reliable sources

  - Historical context

  - Prior data publication effort not followed up

 

### Discussion Notes

- Mailing list engagement currently low

- Encourage more CA participation

 

## March 5 Meeting

- Proposal: cancel due to proximity to F2F

- No objections

 

## ADN Improvement Ballot Discussion

- Continued discussion of scenarios from mailing list:

• Whether validation via CNAME delegation implies control over subdomains

• Disagreement on some scenarios, but there’s consensus on the rules needing to be more clear. 

      Proposed ballot should:

      - Disallow prune → CNAME chaining

      - Prevent unintended delegation of subdomain control

- Ambiguity in:

  - ADN construction

  - Validation reuse

  - Order of operations (prune vs CNAME)

• Ballot Goals:

• Clarify ADN determination

• Prevent re-selection of ADN during validation

• Restrict invalid validation reuse

 

## Adjourned

 

## Attendees

Aaron Gable (Let's Encrypt), Adriano Santoni (Actalis S.p.A.), Ben Wilson (Mozilla), Corey Bonnell (DigiCert), Corey Rasmussen (OATI), Dimitris Zacharopoulos (HARICA), Gregory Tomko (GlobalSign), Gurleen Grewal (Google), Iñigo Barreira (Sectigo), Janet Hines (VikingCloud), Johnny Reading (GoDaddy), Karolina Ruszczyńska (Asseco Data Systems SA (Certum)), Luis Cervantes (SSL.com), Luis Osses (Amazon), Mahua Chaudhuri (Microsoft), Martijn Katerbarg (Sectigo), Michelle Coon (OATI), Nate Smith (GoDaddy), Ono Fumiaki (SECOM Trust Systems), Pedro Fuentes (OISTE Foundation), Pekka Lahtiharju (Telia Company), Rebecca Kelly (SSL.com), Roman Fischer (SwissSign), Scott Rea (eMudhra), Sean Huang (TWCA), Shiloh Heurich (Fastly), Steven Deitte (GoDaddy), Tobias Josefowitz (Opera Software AS), Trevoli Ponds-White (Amazon), Wayne Thayer (Fastly)

 

 

 

--
You received this message because you are subscribed to the Google Groups "Management (CA/B Forum)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to management+...@groups.cabforum.org.
To view this discussion visit https://groups.google.com/a/groups.cabforum.org/d/msgid/management/SA1PR17MB6503FA0F921BAFC10D5A011FE341A%40SA1PR17MB6503.namprd17.prod.outlook.com.