[Cscwg-public] Ballot CSC-4 v1: Move compliance deadlines away from January 1st.

Tim Hollebeek tim.hollebeek at digicert.com
Wed Sep 23 11:18:42 MST 2020

One comment I have received is whether it is better to move the “legacy
SHA-1 message digest” deadline away from January 1st, 2021 as well.  The
draft below moves the RSA deadline and the timestamp token deadline, but not
the legacy SHA-1 message digest deadline.  Is that what people want?  Or
should the SHA-1 message digest deadline move to June 1st, 2021 as well.


From: Cscwg-public <cscwg-public-bounces at cabforum.org> On Behalf Of Tim
Hollebeek via Cscwg-public
Sent: Tuesday, September 22, 2020 12:49 PM
To: cscwg-public at cabforum.org
Subject: [Cscwg-public] Ballot CSC-4 v1: Move compliance deadlines away from
January 1st.

Ballot CSC-4 v1: Move deadline for transition to RSA-3072 and SHA-2
timestamp tokens

Purpose of the Ballot:

The current deadline for moving from RSA-2048 to RSA-3072 and from SHA-1 to
SHA-2 for timestamp tokens falls on January 1, 2021, which is inconvenient
due to code freezes due to the winter holidays.  This ballot delays the
deadline to June 1, 2021 for RSA-3072 and April 30, 2022 for SHA-2 timestamp

The following motion has been proposed by Tim Hollebeek of DigiCert, and
endorsed by Ian McMillan of Microsoft and Hugh Mercer of GlobalSign.


This ballot modifies the “Baseline Requirements for the Issuance and
Management of Publicly‐Trusted Code Signing Certificates" version 2.0
according to the attached redline.


The procedure for approval of this ballot is as follows:

Discussion (7+ days)

Start Time: 2020-09-22, 12:45pm Eastern Time (US)

End Time: not before 2020-09-29, 12:45pm Eastern Time (US)

Vote for approval (7 days)

Start Time: TBD

End Time: TBD

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20200923/4b366da4/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4940 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/cscwg-public/attachments/20200923/4b366da4/attachment-0001.p7s>

More information about the Cscwg-public mailing list