NS-007 passed

Ballot NS-007: Extend deadline to implement NSRv2

Network Security Working Group

Key dates

Effective date: 17 Sep 2025 9 months ago
Voting opened: 23 Jan 2025 1 year ago
Voting closed: 30 Jan 2025 1 year ago
IPR review ends: 07 Mar 2025 1 year ago
Discussion opened: 16 Jan 2025 1 year ago
Discussion closed: 23 Jan 2025 1 year ago

Resources

⎇ GitHub diff https://github.com/cabforum/netsec/compare/6308e44308497318cd54d8041f46714fb9911121...danjeffery:netsec:6a45543531b7871c7995fd950221e83f5627cc0b https://github.com/cabforum/netsec/compare/6308e44308497318cd54d8041f46714fb9911121...danjeffery:netsec:6a45543531b7871c7995fd950221e83f5627cc0b

± Redline https://cabforum.org/posts/2025/2025-03-11-NSWG-Ballot-NS-007/CA-Browser-Forum-NCSSR-2.0.4-redline.pdf https://cabforum.org/posts/2025/2025-03-11-NSWG-Ballot-NS-007/CA-Browser-Forum-NCSSR-2.0.4-redline.pdf

⤓ Document https://cabforum.org/wp-content/uploads/Template-for-Exclusion-Notice.pdf https://cabforum.org/wp-content/uploads/Template-for-Exclusion-Notice.pdf

AI Summary

Generated 2026-06-23 21:25 UTC

Ballot overview

Ballot NS-007: Extend deadline to implement NSRv2.
The ballot modifies the Network and Certificate System Security Requirements (NCSSRs) based on version 2.0.3.
The purpose is to extend implementation deadlines for changes since NSRv1.7.
The working group states this was necessary to complete due diligence and implement changes to resolve concerns raised in the last face to face meeting.

Voting outcome and adoption requirements

The ballot page states the voting period has ended and the ballot has Passed.
Bylaws version 2.5 requirements were reported as MET, including:
- Two-thirds (2/3) or more of votes cast by Voting Members in the Certificate Issuer category in favor.
- At least fifty percent (50%) plus one (1) of votes cast by Voting Members in the Certificate Consumer category in favor.
- At least one (1) Voting Member in each category voting in favor.
- Quorum requirement reported as 6 and MET.

Dates and implementation deadline change

The linked diff text states the requirements change from:
- Prior to 2025-03-12 and Effective 2025-03-12
- To Prior to 2025-09-17 and Effective 2025-09-17.
The redline PDF states the effective date is based on completion of a 30-day IPR review without filing of any Exclusion Notices.

Linked artifacts referenced by the ballot page

GitHub compare link for the ballot changes.
Redline PDF: CA-Browser-Forum-NCSSR-2.0.4-redline.pdf.

Model: gpt-5.4-nano Confidence: 0.86 Result: passed

Effective date: 2025-09-17
Voting opened: 2025-01-23
Voting closed: 2025-01-30
IPR review ends: 2025-03-07
Discussion opened: 2025-01-16
Discussion closed: 2025-01-23

Applicability and conditions

2025-09-17 — CAs must adhere to the updated Network and Certificate System Security Requirements effective 2025-09-17, with the effective date described as depending on completion of the 30-day IPR review without filing any Exclusion Notices. Effective Date based on completion of 30-day IPR review without filing of any Exclusion Notices.

AI-generated from the CABF ballot page. The official CABF article remains the authoritative source.

Vote result

0 Yes

0 No

0 Abstain

Proposers

Daniel Jeffery of Fastly/Certainly and endorsed by Trevoli Ponds-White of Amazon and Dustin Hollenback of Microsoft.

Excerpt

SearchHome » All CA/Browser Forum Posts » Ballot NS-007: Extend deadline to implement NSRv2Ballot NS-007: Extend deadline to implement NSRv2IPR Review of Ballot NS-007: Extend deadline to implement NSRv2 This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this Review Notice is:

View on cabforum.org → Last fetched 15 hours ago