CASC Happenings at NIST

Wednesday April 10, 2013

This week members of the CASC will be attending and speaking at the NIST Workshop on Improving Trust in the Online Marketplace. You can also follow the CASC on Twitter for more information and news at @CertCouncil, as well as see some of the presentations after the events on our SlideShare page. Even if you can’t make it to Maryland, you can still watch the event via the live webcast. Please join us for the following CASC member events:

Session 2: Trust Architectures

Wednesday, April 10 | 10:45 a.m.-12:30 p.m. ET

  • State of PKI for SSL/TLS
    Russ Housley, Vigil Security, LLC
  • Revocation Process
    CASC Member – Ryan Koski, GoDaddy
  • Certificate Transparency protocol design and implementation
    Emilia Kasper, Google
  • DANE: TLS Domain Name Authentication using the DNS Itself
    Richard Barnes, BBN Technologies

Session 4: Experiences

Wednesday, April 10 | 2:20-3:00 p.m. ET

  • A Window of Opportunity: How Certificate Transparency Increases Online Trust Accountability and Security: A CA Perspective
    CASC Member – Ben Wilson, DigiCert
  • The ICSI Notary: Lessons and Insights from a Large-Scale Study of the SSL/TLS Ecosystem
    Bernhard Amann, International Computer Science Institute

Session 5: Panel – Evaluating Proposals for Improving Trust

Wednesday, April 10 | 3:30-5:00 p.m. ET

Moderator: Sean Turner, IECA, Inc.


  • Eric Osterweil, Verisign
  • Sid Stamm, Mozilla
  • CASC Member – Rick Andrews, Symantec Corporation
  • Chris Sutherland, BMO

Session 7: Requirements, Auditing and Evidence

Thursday, April 11 | 10:50 a.m.-12:30 p.m. ET

  • Federal PKI Approach to Auditing and Requirements
    Deb Gallagher, GSA
  • Reference Certificate Policy
    Andrew Regenscheid, NIST
  • CA Self-Governance: CA/Browser Forum Guidelines and Other Industry Developments
    CASC Member – Ben Wilson, DigiCert
  • Enhancing Trust by Enhancing the Audit Process
    Jens Bender, German Federal Office for Information Security, BSI
  • European Approach to oversight of “Trust Service Providers”
    Arno Fiedler, Nimbus Technologieberatung GmbH

Session 8: Management and Risk Mitigation

Thursday, April 11 | 1:30-2:30 p.m. ET

  • Reducing the Tail Risk of CA Compromise by Enabling Trust in Regional CAs Using Language Community and Locale Annotations
    Brad Hill, PayPal
  • Verifying Keys through Publicity and Communities of Trust
    Eric Osterweil, Verisign
  • Using least privileged design principals to improve trust in the online marketplace
    CASC Member – Ryan Hurst, GlobalSign

Session 9: Panel – Where Do We Go From Here?

Thursday, April 11 | 3:00-4:30 p.m. ET

Moderator: Tim Polk, OSTP


  • CASC Member – Ben Wilson, CAB Forum
  • Russ Housley, IAB
  • Joe Hall, CDT
  • Peter Eckersley, EFF
  • Stephen Schultze, Princeton
  • Russ Housley, Vigil Security, LLC

Check back next week for NIST updates from CASC members attending the event.

This article was originally published by the "CA Security Council". In 2021 the CASC was restructred and renamed to the "Public Key Infrastructure Consortium" shortly "PKI Consortium".

Learn more about the PKI Consortium
Participate in our community discussions and/or join the consortium