[cabfpub] Ballot 152 - Issuance of SHA-1 certificates through 2016

Rick Andrews Rick_Andrews at symantec.com
Fri Oct 2 21:06:43 UTC 2015

I apologize; I messed up the dates. I meant to start both periods on a Monday, so review starting Monday Oct 5 and ballot starting the following Monday.

The goal is to allow CAs to issue SHA-1 certs through 2016, for browser-mediated connections and other internal or external TLS connections. The current BRs prohibit us from issuing SHA-1 certs in 2016 for any purpose from public roots.


On Oct 2, 2015, at 1:58 PM, Ryan Sleevi <sleevi at google.com<mailto:sleevi at google.com>> wrote:

On Fri, Oct 2, 2015 at 10:45 AM, Rick Andrews <Rick_Andrews at symantec.com<mailto:Rick_Andrews at symantec.com>> wrote:

The review period for this ballot shall commence at 2200 UTC on Monday, October 2, 2015, and will close at 2200 UTC on Monday, October 9, 2015. Unless the motion is withdrawn during the review period, the voting period will start immediately thereafter and will close at 2200 UTC on Monday, October 16, 2015. Votes must be cast by posting an on-list reply to this thread.

Rick, it would appear either the days or the dates are wrong for this ballot. October 2, 2015 is a Friday, as is October 16.

Am I correct in assuming that the review period begins today, Friday, October 2, 2015, and continues to Friday, October 9, 2015. Voting then concludes on Friday, October 16, 2015?

Can you also indicate whether the goal of such a ballot is to support browser-mediated connections to servers, or is this to enable internal systems outside of browser use cases?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20151002/2c6a5ded/attachment-0003.html>

More information about the Public mailing list