The CA/Browser Forum's March 2025 Face to Face meeting in Tokyo brought together leading certificate authorities, browser makers, and industry experts to discuss crucial developments in digital trust. Sectigo's team, including CA/Browser Vice Chairman Tim Callan and other key executives, actively participated in shaping industry standards.

Key Developments Discussed:

1. 47-Day Certificate Lifespan (SC-081 Ballot)

• Proposal to reduce SSL/TLS certificate validity to 47 days over 4 years
• Ballot passed on April 11, advancing industry-wide security measures
• Aligns with trends toward enhanced security through shorter certificate lifespans

2. Open MPIC Project Implementation

• Open-source solution for DNS-based attack mitigation during domain validation
• Enables certificate authorities to verify DNS records from multiple global points
• Mandatory monitoring mode effective March 15
• Full implementation required by September 15, 2025
• Presented by Sectigo Principal Architect Dmitry Sharkov

3. Temporary Restraining Orders (TROs)

• Addressed challenges when legal actions conflict with security requirements
• Discussed 2024 incident where TRO prevented mandatory certificate revocation
• Forum exploring solutions to protect security controls from legal interference
• Working on guidelines for CAs to handle similar situations

The meeting reinforced the importance of collaboration in cybersecurity and Sectigo's role in shaping industry standards. These discussions continue to drive improvements in digital trust infrastructure and online security measures.

The forum's work ensures the continued evolution of secure internet infrastructure while addressing emerging challenges in the digital certificate ecosystem.

Related Articles

Previous Articles