-
Listen Now
EPISODE 465
Broadcast Date:
February 7, 202542 minutes
Podcast Feb 07, 2025Root Causes 465: Twelve Bugzilla Sins for CAs to Avoid
In the wake of the Bugzilla Bloodbath, we list and describe twelve sins CAs commit on Bugzilla and its like, why they're detrimental, and how CAs should avoid them.
-
Listen Now
EPISODE 459
Broadcast Date:
January 24, 202512 minutes
Podcast Jan 24, 2025Root Causes 459: 2024 Lookback - Shorter Certificate Lifespans & DCV
2024 set in motion major changes for certificate lifespans and DCV. In this episode we discuss the Apple 47-day proposal, stepping down certificate term, public versus private CA use cases, DCV reuse periods, MPIC, WHOIS, and other topics.
-
Listen Now
EPISODE 451
Broadcast Date:
December 26, 202435 minutes
Podcast Dec 26, 2024Root Causes 451: A Year in CABF Ballots
It was a crazy year for CA/Browser Forum activity, with nearly three times the normal number of ballots. Guest Martijn Katerbarg goes over the 32 CABF ballots from 2024.
-
Listen Now
EPISODE 448
Broadcast Date:
December 17, 202426 minutes
Podcast Dec 17, 2024Root Causes 448: The Privilege of Being a Public CA
We go over Tim's September 2024 keynote speech at ENISA CA Day, "The Privilege of Being a Public CA."
-
Listen Now
EPISODE 446
Broadcast Date:
December 12, 202413 minutes
Podcast Dec 12, 2024Root Causes 446: Sectigo Assumes Five CABF Offices
Tim has stepped into the position of vice-chair of the CA/Browse Forum, and Sectigo now holds five chair or vice-chair positions in that body. We explain how leadership is chosen, the offices Sectigo holds today, and some of our vision for CABF in the next two years.
-
Listen Now
EPISODE 442
Broadcast Date:
November 25, 202422 minutes
Podcast Nov 25, 2024Root Causes 442: Apple Proposal to Reduce SSL Lifespan Updated
Apple has published an updated draft to its proposal for shortening the lifespan of SSL certificates, including a final term of 47 rather than 45 days.
-
Listen Now
EPISODE 414
Broadcast Date:
August 23, 202412 minutes
Podcast Aug 23, 2024Root Causes 414: What Are the Revocation Periods for Public Certs?
We detail mandatory revocation periods for leaf certificates and intermediates and explain when a 24-hour versus a 120-hour revocation deadline applies.
-
Listen Now
EPISODE 409
Broadcast Date:
August 2, 202415 minutes
Podcast Aug 02, 2024Root Causes 409: Mozilla Distrusts Entrust
This week Mozilla chose to follow Chrome in deprecating the Entrust trusted roots. We give you the details and explain why this action matters.
-
Learn More
What is the CA/Browser forum?
Blog Post from Sectigo
Blog Post Jul 01, 2024The CA/Browser Forum sets standards for digital certificates, enhancing security and reliability through collaboration among CAs, browsers, and tech firms.
-
Listen Now
EPISODE 392
Broadcast Date:
June 7, 202421 minutes
Podcast Jun 07, 2024Root Causes 392: Chrome Issues a Quality Ultimatum
At the latest CA/Browser Forum meeting, Google Chrome outlined its expectations for CA incident reporting quality and highlighted common failures.
-
Listen Now
EPISODE 390
Broadcast Date:
May 31, 202422 minutes
Podcast May 31, 2024Root Causes 390: Chrome Boosts Its Root Distrust Agility
A root trust deprecation highlights new Chrome functionality that enables more agile and less disruptive distrust events.
-
Watch Now
60 minutes
Webinar May 22, 2024Bugzilla – the real issue of missed revocations
March and April 2024 have seen more than 25 new Bugzilla bugs being written up – more than 10 times the typical pace.
