Home » About the CA/Browser Forum

About the CA/Browser Forum

The CA/Browser Forum is governed by Bylaws, which were first adopted in 2012. The Bylaws set forth the qualifications for Membership in the Forum, and the types of participation that are allowed for non-voting members, interested parties, and others. The Forum is an unincorporated association of separate organizations.

All active participants in CA/Browser Forum activities must agree to the Forum’s Intellectual Property Rights Policy, also adopted in 2012.

The Forum elects Officers — a Chair, who serves a two-year term, and a Vice Chair. The Chair and Vice Chair manage the Meetings of the Forum and act as the Forum’s official representatives.

The Forum communicates through a variety of means, such as email lists, telephone calls, face-to-face meetings, and this web site. As stated generally in section 1 of the Forum’s Bylaws, the CA/Browser Forum advances industry best practices to improve the ways that certificates are used to the benefit of Internet users and the security of their communications.

Latest releases

Server Certificate Requirements
SC-089: Mass Revocation Planning - Aug 26, 2025

Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.12 - Ballot SMC014 - Oct 13, 2025

This ballot introduces requirements that a Certificate Issuer MUST deploy DNSSEC validation back to the IANA DNSSEC root trust anchor on all DNS queries associated with CAA record lookups performed by the Primary Network Perspective, effective March 15, 2026. The ballot is intended to maintain consistency in the S/MIME Baseline Requirements with the requirements of Ballot SC-085 which implemented identical requirements in the TLS Baseline Requirements. Note: SC-085 also introduced requirements in TLS Baseline Requirements for the use of DNSSEC in domain control validation. These requirements are automatically adopted in the S/MIME BR by the email domain control methods that include a normative reference to section 3.2.2.4 of the TLS Baseline Requirements. The draft also includes minor corrections to web links in the text. This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Client Wilson (Apple) and Ashish Dhiman (GlobalSign).

Network and Certificate System Security Requirements
Version 2.0.5 (Ballot NS-008) - Jul 9, 2025