On 08/01/14 11:30, Gervase Markham wrote:
On 08/01/14 06:29, Man Ho (Certizen) wrote:
However, we know SHA-2 is a set of algorithms SHA-224, SHA-256, SHA-384,
SHA-512, SHA-512/224, SHA-512/256. Which SHA-2 algorithm should CAs use?
Note that MS does not support SHA-224, so we can exclude that one.
SHA-512/224, SHA-512/256 and SHA-512/t aren't supported either.
SHA-256, SHA-384 and SHA-512 are the algorithms that CAs should use.
See http://www.keylength.com/ for advice on when to use each one.
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security-policy
