← CABF Ballot Browser
SC-052v2 cancelled

Ballot SC052v2: Specify CRL Validity Intervals in Seconds

Server Certificate Working Group

Key dates

Discussion opened
02 Dec 2021 4 years ago
Discussion closed
09 Dec 2021 4 years ago

Resources

GitHub diff https://github.com/cabforum/servercert/compare/cda0f92ee70121fd5d692685b97ebb6669c74fb7...2b9cf93af71233095f370cdc1d1b587166da4b07 https://github.com/cabforum/servercert/compare/cda0f92ee70121fd5d692685b97ebb6669c74fb7…2b9cf93af71233095f370cdc1d1b587166da4b07

AI Summary

Generated 2026-06-23 21:25 UTC

Ballot overview

  • Ballot SC052v2, Specify CRL Validity Intervals in Seconds, proposed changes to the Baseline Requirements based on Version 1.8.0.
  • The stated purpose was to change CRL validity periods to be measured in seconds, similar to an earlier ballot that changed OCSP validity periods, and to apply the same handling to other time periods for clarity and precision.
  • The ballot page says the ballot expired before entering the voting period.

Proposed changes in the redline

  • Added a definition of Validity Interval for CRLs and OCSP responses as the difference between thisUpdate and nextUpdate, inclusive.
  • Added a convention effective 2022-06-01 that 3,600 seconds equals one hour and 86,400 seconds equals one day, ignoring leap seconds, with any additional amount of time counting as an additional unit.
  • For CRLs issued prior to 2022-06-01, the existing nextUpdate-based limits remained in place.
  • For CRLs issued on or after 2022-06-01, the CRL update and reissue requirements were rewritten to use Validity Interval limits instead of nextUpdate wording.
  • For subordinate CA certificate CRLs and OCSP responses, the redline introduced phased language distinguishing requirements before and on or after 2022-06-01, including 366-day SHOULD language and 367-day MUST limits.
  • For OCSP responses, the redline removed the prior effective 2020-09-30 phrasing and replaced it with Validity Interval language, while keeping the same substantive minimum and maximum interval requirements and update timing rules.
  • For certificate validity calculations, the redline added separate treatment for certificates issued prior to 2022-06-01 and on or after 2022-06-01, including the day-length convention and the instruction that subscriber certificates should not be issued for the maximum permissible time by default.

Ballot procedure shown on the page

  • Discussion period: December 2, 2021 10:30 am Eastern through no earlier than December 9, 2021 10:30 am Eastern.
  • Vote for approval: start time TBD, end time TBD.

Outcome

  • The ballot did not enter the voting period, so it never became normative.
Model: gpt-5.4-mini Confidence: 0.98 Result: withdrawn
Discussion opened
2021-12-02
Discussion closed
2021-12-09

AI-generated from the CABF ballot page. The official CABF article remains the authoritative source.

Proposers

Tim Hollebeek of DigiCert and endorsed

Excerpt

SearchHome » All CA/Browser Forum Posts » Ballot SC052v2: Specify CRL Validity Intervals in SecondsBallot SC052v2: Specify CRL Validity Intervals in SecondsBallot SC-52 version 2: Specify CRL Validity Intervals in Seconds This ballot expired before entering the voting period.

View on cabforum.org → Last fetched 16 hours ago

We use only essential cookies and local browser storage for preferences and security. See our Privacy Policy for details.

Confirm action