SHA-1 serverAuth cert issued by Trustis in November 2016

Rob Stradling via dev-security-policy Wed, 15 Feb 2017 14:04:02 -0800

This currently unrevoked cert has a SHA-1/RSA signature, the serverAuthEKU and CN=hmrcset.trustis.com:

https://crt.sh/?id=50773741&opt=cablint

It lacks the SAN extension, but that doesn't excuse it from the ban onSHA-1!


Its issuer is trusted for serverAuth by Mozilla:
https://crt.sh/?caid=920&opt=mozilladisclosure

--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

SHA-1 serverAuth cert issued by Trustis in November 2016

Reply via email to