Knowledge

Certificate Authority Security Council

Source 📝

25: 246:
The CASC limits membership to SSL certificate authorities that meet their requirements for reputation, operation, and security. Members are required to undergo an annual audit and to adhere to industry standards, such as the CA/Browser Forum’s Baseline Requirements and Network Security Guidelines.
237:
According to Robin Alden, CTO of Comodo and member of the Council, the CASC will serve as a united front for all of the CAs involved: "While not a standards-setting organization, we’re committed to supplementing standards-setting organizations by providing education, research, and advocacy on the
43:
The PKI Consortium was born out of the CA Security Council, with a broader mission to advance trust in assets and communication for everyone and everything using public key infrastructure (PKI). The consortium removed membership-fees and many new members diversified the view on PKI.
321: 371: 36:. The reason given is: In July 2021 the Certificate Authority Security Council (CASC) announced that it restructured and renamed the organization to the PKI Consortium (Public Key Infrastructure Consortium or PKIC). 309: 283:. Code signing certificates play a key role in helping users identify authentic software code from reputable publishers and receive the assurance that the code has not been tampered with beforehand. 325: 572: 499: 375: 81: 513: 531: 596: 420: 609: 434: 396: 255:
The group works collaboratively to create and define the initiatives to improve the understanding of policies and their impact on Internet infrastructure.
346: 576: 310:
Entrust Joins World's Leading CAs to Form Certificate Authority Security Council, Advance Internet Security and Trusted SSL Ecosystem - Feb 14, 2013
115:
Exploration and promotion of best practices that advance trusted SSL deployment and CA operations as well as the security of the Internet in general
298: 500:
CA Security Council | World’s Leading Certificate Authorities Come Together to Advance Internet Security and the Trusted SSL Ecosystem
510: 271:. The protocol is intended to ensure that web users are aware when they visit a web site with a revoked or expired SSL certificate. 613: 528: 431: 400: 38: 637: 450: 350: 547: 475: 632: 227: 226:
and other standards-setting bodies. They support the development of enhancements that improve the
179: 264: 231: 597:
Certificate Authorities to push for better certificate-revocation checking - Computerworld
8: 397:"Multivendor power council formed to address digital certificate issues - Network World" 56:
Please help update this article to reflect recent events or newly available information.
573:"New Certificate Authorities group promises better revocation checking - Techworld.com" 167: 223: 39:
https://pkic.org/2021/07/12/from-casc-to-the-public-key-infrastructure-consortium/
535: 517: 438: 183: 372:"Major Certificate Authorities Unite In The Name Of SSL Security - Dark Reading" 191: 163: 421:
Website Certificate Authorities Set Up Security Council for Advocacy, Research
263:
The group's primary focus was promoting an understanding of the importance of
626: 268: 347:"Announcing the Certificate Authority Security Council | Inside GoDaddy.com" 280: 274: 187: 529:
CAs Form New Alliance to Focus on Security Issues, Education | threatpost
195: 432:
SSL Certificate Authority Security Council Takes Root | Electronic Staff
511:
Certificate authorities band together to boost security – Network World
279:
The group has also worked to secure software distribution with digital
207: 80: 451:"Notice of Withdrawal from the CA Security Council | DigiCert Blog" 199: 211: 203: 551: 479: 610:"Code Signing Seen as Effective Way to Safeguard App Security" 178:
The group was founded in February 2013 with the seven largest
170:
standards and educate the public on Internet security issues.
299:
Let’s Build a More Secure Future | Symantec Connect Community
258: 47: 144: 275:
Securing Software Distribution with Digital Code Signing
548:"CA Security Council | About the CA Security Council" 51: 214:. DigiCert withdrew from the group June 15, 2018. 624: 364: 241: 156:The Certificate Authority Security Council 79: 259:Certificate Revocation and OCSP Stapling 250: 625: 166:created to conduct research, promote 74:Certificate Authority Security Council 222:The CASC supports the efforts of the 18: 322:"The Paypers. Insights in payments" 13: 607: 135:7 publicly trusted PKI authorities 14: 649: 238:best practices and use of SSL." 230:(SSL) and the operations of the 23: 601: 590: 565: 540: 522: 504: 493: 476:"About the CA Security Council" 468: 443: 425: 414: 389: 339: 314: 303: 292: 107:Industry Advocacy Organization 1: 286: 267:checking and the benefits of 217: 162:) is a multi-vendor industry 46:The website and articles on 7: 10: 654: 516:February 25, 2014, at the 173: 139: 129: 119: 111: 103: 95: 87: 78: 32:This article needs to be 638:Certificate authorities 612:. eWeek. Archived from 242:Membership requirements 232:certificate authorities 180:certificate authorities 608:Kerner, Sean Michael. 534:March 8, 2013, at the 265:certificate revocation 48:http://casecurity.org/ 616:on January 26, 2014. 251:Industry initiatives 228:Secure Sockets Layer 75: 437:2014-07-14 at the 73: 633:Internet security 168:Internet security 153: 152: 71: 70: 52:https://pkic.org/ 50:also redirect to 645: 618: 617: 605: 599: 594: 588: 587: 585: 584: 575:. Archived from 569: 563: 562: 560: 559: 550:. Archived from 544: 538: 526: 520: 508: 502: 497: 491: 490: 488: 487: 478:. Archived from 472: 466: 465: 463: 462: 447: 441: 429: 423: 418: 412: 411: 409: 408: 399:. Archived from 393: 387: 386: 384: 383: 374:. Archived from 368: 362: 361: 359: 358: 349:. Archived from 343: 337: 336: 334: 333: 324:. Archived from 318: 312: 307: 301: 296: 224:CA/Browser Forum 184:SSL certificates 149: 146: 83: 76: 72: 66: 63: 57: 27: 26: 19: 653: 652: 648: 647: 646: 644: 643: 642: 623: 622: 621: 606: 602: 595: 591: 582: 580: 571: 570: 566: 557: 555: 546: 545: 541: 536:Wayback Machine 527: 523: 518:Wayback Machine 509: 505: 498: 494: 485: 483: 474: 473: 469: 460: 458: 449: 448: 444: 439:Wayback Machine 430: 426: 419: 415: 406: 404: 395: 394: 390: 381: 379: 370: 369: 365: 356: 354: 345: 344: 340: 331: 329: 320: 319: 315: 308: 304: 297: 293: 289: 277: 261: 253: 244: 220: 176: 143: 132: 122: 67: 61: 58: 55: 28: 24: 17: 12: 11: 5: 651: 641: 640: 635: 620: 619: 600: 589: 564: 539: 521: 503: 492: 467: 442: 424: 413: 388: 363: 338: 313: 302: 290: 288: 285: 276: 273: 260: 257: 252: 249: 243: 240: 219: 216: 175: 172: 164:advocacy group 151: 150: 141: 137: 136: 133: 130: 127: 126: 123: 121:Region served 120: 117: 116: 113: 109: 108: 105: 101: 100: 97: 93: 92: 89: 85: 84: 69: 68: 31: 29: 22: 15: 9: 6: 4: 3: 2: 650: 639: 636: 634: 631: 630: 628: 615: 611: 604: 598: 593: 579:on 2014-02-01 578: 574: 568: 554:on 2017-07-14 553: 549: 543: 537: 533: 530: 525: 519: 515: 512: 507: 501: 496: 482:on 2017-07-14 481: 477: 471: 456: 452: 446: 440: 436: 433: 428: 422: 417: 403:on 2013-07-28 402: 398: 392: 378:on 2013-04-10 377: 373: 367: 353:on 2013-11-11 352: 348: 342: 328:on 2015-07-02 327: 323: 317: 311: 306: 300: 295: 291: 284: 282: 272: 270: 269:OCSP stapling 266: 256: 248: 239: 235: 233: 229: 225: 215: 213: 209: 205: 201: 197: 193: 189: 185: 182:, issuers of 181: 171: 169: 165: 161: 157: 148: 142: 138: 134: 128: 124: 118: 114: 110: 106: 102: 99:February 2013 98: 94: 90: 86: 82: 77: 65: 53: 49: 45: 41: 40: 35: 30: 21: 20: 614:the original 603: 592: 581:. Retrieved 577:the original 567: 556:. Retrieved 552:the original 542: 524: 506: 495: 484:. Retrieved 480:the original 470: 459:. Retrieved 457:. 2018-06-15 454: 445: 427: 416: 405:. Retrieved 401:the original 391: 380:. Retrieved 376:the original 366: 355:. Retrieved 351:the original 341: 330:. Retrieved 326:the original 316: 305: 294: 281:code signing 278: 262: 254: 245: 236: 221: 177: 159: 155: 154: 131:Membership 88:Abbreviation 59: 42: 37: 33: 16:Organization 196:Trend Micro 627:Categories 583:2013-03-15 558:2013-03-15 486:2013-03-15 461:2018-07-02 407:2013-03-15 382:2013-03-15 357:2013-03-15 332:2013-03-15 287:References 218:Objectives 208:GlobalSign 145:casecurity 125:Worldwide 96:Formation 62:July 2021 532:Archived 514:Archived 455:DigiCert 435:Archived 200:DigiCert 192:Symantec 212:GoDaddy 204:Entrust 174:History 140:Website 112:Purpose 34:updated 234:(CA). 188:Comodo 210:and 160:CASC 147:.org 104:Type 91:CASC 629:: 453:. 206:, 202:, 198:, 194:, 190:, 186:— 54:.. 586:. 561:. 489:. 464:. 410:. 385:. 360:. 335:. 158:( 64:) 60:(

Index

https://pkic.org/2021/07/12/from-casc-to-the-public-key-infrastructure-consortium/
http://casecurity.org/
https://pkic.org/

casecurity.org
advocacy group
Internet security
certificate authorities
SSL certificates
Comodo
Symantec
Trend Micro
DigiCert
Entrust
GlobalSign
GoDaddy
CA/Browser Forum
Secure Sockets Layer
certificate authorities
certificate revocation
OCSP stapling
code signing
Let’s Build a More Secure Future | Symantec Connect Community
Entrust Joins World's Leading CAs to Form Certificate Authority Security Council, Advance Internet Security and Trusted SSL Ecosystem - Feb 14, 2013
"The Paypers. Insights in payments"
the original
"Announcing the Certificate Authority Security Council | Inside GoDaddy.com"
the original
"Major Certificate Authorities Unite In The Name Of SSL Security - Dark Reading"
the original

Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.