← CABF Ballot Browser
CSC-4 passed

Ballot CSC-4 v1: Move deadline for transition to RSA-3072 and SHA-2 timestamp tokens

Code Signing Certificate Working Group

Key dates

Effective date
01 Jun 2021 5 years ago
Voting opened
29 Sep 2020 5 years ago
Voting closed
06 Oct 2020 5 years ago
Discussion opened
22 Sep 2020 5 years ago
Discussion closed
29 Sep 2020 5 years ago

Resources

± Redline https://cabforum.org/uploads/baseline_requirements_for_the_issuance_and_management_of_code_signing.v.2.1_redline.pdf /uploads/baseline_requirements_for_the_issuance_and_management_of_code_signing.v.2.1_redline.pdf
Document https://cabforum.org/uploads/baseline_requirements_for_the_issuance_and_management_of_code_signing.v.2.1.pdf /uploads/baseline_requirements_for_the_issuance_and_management_of_code_signing.v.2.1.pdf

AI Summary

Generated 2026-06-23 21:41 UTC

Ballot overview

  • Ballot CSC-4 v1 is titled Move deadline for transition to RSA-3072 and SHA-2 timestamp tokens.
  • The ballot page says voting on the ballot has closed and the ballot passes.
  • It amends the Baseline Requirements for the Issuance and Management of Publicly-Trusted Code Signing Certificates version 2.0 according to the attached redline.

What changes

  • The purpose statement says the current deadline for moving from RSA-2048 to RSA-3072 and from SHA-1 to SHA-2 for timestamp tokens falls on January 1, 2021.
  • The ballot delays that deadline to June 1, 2021 for RSA-3072.
  • The ballot delays that deadline to April 30, 2022 for SHA-2 timestamp tokens.

Approval process

  • Discussion ran from 2020-09-22, 12:45pm Eastern Time (US) to 2020-09-29, 1:10pm Eastern Time (US).
  • Vote for approval ran from 2020-09-29, 1:10pm Eastern Time (US) to 2020-10-06, 1:10pm Eastern Time (US).
  • The page states 7 CAs voted in favor, 0 opposed, and 0 abstaining.
  • The page states 1 Certificate Consumer voted in favor, 0 opposed, and 0 abstaining.
  • The ballot passes.
Model: gpt-5.4-mini Confidence: 0.98 Result: passed
Effective date
2021-06-01
Voting opened
2020-09-29
Voting closed
2020-10-06
Discussion opened
2020-09-22
Discussion closed
2020-09-29
Applicability and conditions

2021-06-01 — CAs must complete the move from RSA-2048 to RSA-3072 by this date RSA-3072 transition for code signing certificates

2022-04-30 — CAs must complete the move from SHA-1 to SHA-2 for timestamp tokens by this date SHA-2 timestamp tokens

AI-generated from the CABF ballot page. The official CABF article remains the authoritative source.

Proposers

Tim Hollebeek of DigiCert, and endorsed by Ian McMillan of Microsoft and Hugh Mercer of GlobalSign.

Excerpt

SearchHome » All CA/Browser Forum Posts » Ballot CSC-4 v1: Move deadline for transition to RSA-3072 and SHA-2 timestamp tokensBallot CSC-4 v1: Move deadline for transition to RSA-3072 and SHA-2 timestamp tokensVoting on this ballot has closed. The results are below:

View on cabforum.org → Last fetched 15 hours ago

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action