CA/Browser Forum
Home » All CA/Browser Forum Posts » Ballot NS-007: Extend deadline to implement NSRv2

Ballot NS-007: Extend deadline to implement NSRv2

IPR Review of Ballot NS-007: Extend deadline to implement NSRv2

This Review Notice is sent pursuant to Section 4.1 of the CA/Browser Forum’s Intellectual Property Rights Policy (v1.3). This Review Period of 30 days is for one Final Maintenance Guidelines. The complete Draft Maintenance Guideline that is the subject of this Review Notice is:

https://cabforum.org/posts/2025/2025-03-11-NSWG-Ballot-NS-007/CA-Browser-Forum-NCSSR-2.0.4-redline.pdf

Summary of Review

Exclusion Notices

Members with any Essential Claim(s) to exclude must forward a written Notice to Exclude Essential Claims to the Working Group Chair (email to clintw at apple.com) and also submit a copy to the CA/B Forum public mailing list (email to public at cabforum.org) before the end of the Review Period.

For details, please see the current version of the CA/Browser Forum Intellectual Property Rights Policy.

(An optional template for submitting an Exclusion Notice is available at https://cabforum.org/wp-content/uploads/Template-for-Exclusion-Notice.pdf)

Voting Results of Ballot NS-007: Extend deadline to implement NSRv2

The voting period for Ballot NS-007: Extend deadline to implement NSRv2 has ended and the Ballot has Passed. The following votes were cast:

4 votes by Certificate Consumers

  • 4 Yes votes: Apple, Google, Microsoft, Mozilla
  • 0 No votes:
  • 0 Abstain votes:

100% of voting Certificate Consumers voted in favor

17 votes by Certificate Issuers

  • 17 Yes votes: Amazon Trust Services, Asseco Data Systems SA (Certum), Buypass AS, DigiCert, Disig, Entrust, Fastly, GoDaddy, HARICA, IdenTrust, OISTE Foundation, Sectigo, SSL.com, SwissSign, Telia Company, TrustAsia, VikingCloud
  • 0 No votes:
  • 0 Abstain votes:

100% of voting Certificate Issuers voted in favor

Bylaws version 2.5 Requirements

  1. Bylaw 2.3(6) requires:  - In order for a ballot to be adopted by the Forum, two‐thirds (2/3) or more of the votes cast by the Voting Members in the Certificate Issuer category must be in favour of the ballot. This requirement was MET.  - at least fifty percent (50%) plus one (1) of the votes cast by the Voting Members in the Certificate Consumer category must be in favour of the ballot. This requirement was MET.  - At least one (1) Voting Member in each category must vote in favour of a ballot for the ballot to be adopted. This requirement was MET.
  2. Bylaw 2.3(7) requires:  - A ballot result will be considered valid only when more than half of the number of currently active Voting Members has participated. The number of currently active Voting Members is the average number of Voting Member organizations that have participated in the previous three (3) Forum Meetings and Forum Teleconferences.   - the quorum was 6 for this ballot. This requirement was MET.

Ballot NS-007: Extend deadline to implement NSRv2

Ballot NS-007 is proposed by Daniel Jeffery of Fastly/Certainly and endorsed by Trevoli Ponds-White of Amazon and Dustin Hollenback of Microsoft.

Purpose of Ballot

NS-007 extends the deadline to implement the changes since NSRv1.7.

Relation to Ballot NS-003 through NS-006

Ballots NS-003 through NS-006 are a restructuring and refining of the NSR. Ballot NS-007 extends their implementation deadlines. The working group determined this was necessary to complete due diligence and implement any changes to resolve concerns raised in the last face to face meeting.

— MOTION BEGINS —

This ballot modifies the “Network and Certificate System Security Requirements” as follows, based on version 2.0.3:

https://github.com/cabforum/netsec/compare/6308e44308497318cd54d8041f46714fb9911121...danjeffery:netsec:6a45543531b7871c7995fd950221e83f5627cc0b

— MOTION ENDS —

The procedure for approval of this ballot is as follows:

Discussion Period (14+ days)

  • Start: 2025 Jan 16, 04:00 UTC
  • End: 2025 Jan 23, 04:00 UTC

Voting Period (7 days)

  • Start: 2025 Jan 23, 17:00 UTC
  • End: 2025 Jan 30, 17:00 UTC
Latest releases
Server Certificate Requirements
SC-081v3: Introduce Schedule of Reducing Validity and Data Reuse Periods - May 21, 2025

BR v2.1.5

Code Signing Requirements
v3.8 - Aug 5, 2024

What’s Changed CSC-25: Import EV Guidelines to CS Baseline Requirements by @dzacharo in https://github.com/cabforum/code-signing/pull/38 Full Changelog: https://github.com/cabforum/code-signing/compare/v3.7...v3.8

S/MIME Requirements
v1.0.9 - Ballot SMC011 - May 14, 2025

This ballot allows the option to use a European Unique Identifier (EUID) as a Registration Reference in the NTR Registration Scheme. The EUID uniquely identifies officially-registered organizations, Legal Entities, and branch offices within the European Union or the European Economic Area. The EUID is specified in chapter 9 of the Annex contained in the Implementing Regulation (EU) 2021/1042 which describes rules for the application of Directive (EU) 2017/1132 “relating to certain aspects of company law (codification)”. The ballot also includes several editorial corrections, (e.g., reordering of References and regrouping of information from Appendix A to Section 7.1.4.2.2 (d)). This ballot is proposed by Stephen Davidson (DigiCert) and endorsed by Adrian Mueller (SwissSign) and Adriano Santoni (Actalis).

Network and Certificate System Security Requirements
v2.0 - Ballot NS-003 - Jun 26, 2024

Ballot NS-003: Restructure the NCSSRs in https://github.com/cabforum/netsec/pull/35

Edit this page
The Certification Authority Browser Forum (CA/Browser Forum) is a voluntary gathering of Certificate Issuers and suppliers of Internet browser software and other applications that use certificates (Certificate Consumers).