← CABF Ballot Browser
Ballot-153
failed
Ballot 153 – Short-Lived Certificates
Server Certificate Working Group
Key dates
- Voting opened
- 03 Nov 2015 10 years ago
- Voting closed
- 10 Nov 2015 10 years ago
- Discussion opened
- 27 Oct 2015 10 years ago
- Discussion closed
- 03 Nov 2015 10 years ago
AI Summary
Ballot overview
- Ballot 153, Short-Lived Certificates, proposed changes to the Baseline Requirements for short-lived certificates.
- The ballot page states that the revision closed on November 10th 2015.
- The chair received 26 votes from CAs and 5 votes from browsers.
- The page explicitly states that the ballot fails.
Proposed changes
- Add definitions for Issuance Time, Short-Lived Certificate, and Validity Period.
- Revise Section 4.9.10 on online revocation checking requirements.
- For subscriber certificates other than a Short-Lived Certificate containing a cRLDistributionPoints extension, the CA would need to update OCSP information at least every four days, and OCSP responses would need a maximum expiration time of ten days.
- Revise Section 7.1.2.3 so that:
- cRLDistributionPoints must be present for Short-Lived Certificates that lack an authorityInformationAccess extension.
- authorityInformationAccess is generally required, with exceptions for stapling and Short-Lived Certificates.
- The OCSP responder URL may be omitted for Short-Lived Certificates containing a cRLDistributionPoints extension or if the subscriber staples OCSP responses in TLS handshakes.
Ballot process dates
- The review period was to commence on 27 October 2015 and close on 3 November 2015.
- The voting period was to start immediately after the review period and close on 10 November 2015.
Outcome
- The ballot failed, so it never became normative.
- Voting opened
- 2015-11-03
- Voting closed
- 2015-11-10
- Discussion opened
- 2015-10-27
- Discussion closed
- 2015-11-03
AI-generated from the CABF ballot page. The official CABF article remains the authoritative source.
Proposers
Jeremy Rowley of DigiCert and endorsed by Ryan Sleevi of Google and Gervase Markham of Mozilla.
Excerpt
SearchHome » All CA/Browser Forum Posts » Ballot 153 – Short-Lived CertificatesBallot 153 – Short-Lived CertificatesBallot 153 – Short-Lived Certificates Ballot 153, Short-Lived Certificates revision, closed on November 10th 2015. The Chair received 26 votes from CAs in which 04 were in favor, 17 against and 05 abstentions and 05 votes from Browsers in which 04 were in favor, 01 against and 0 abstention. Therefore the ballot fails.
View on cabforum.org →
Last fetched 16 hours ago