Hongkong Post CA no longer signs any certificates using the SHA1 algorithm, but still signs SHA1 hashes over ARLs/CRLs for un-expired SHA1 SMIME certificates. Since the root certificate (Root CA 1) will expire on 15 May 2023, we wish that the sunset date be no earlier than that expiry date.
Eddie On Wednesday, February 2, 2022 at 11:59:37 AM UTC+8 [email protected] wrote: > I have emailed CAs in the Mozilla program asking them to respond here. > > On Wed, Jan 26, 2022 at 12:41 PM Ryan Sleevi <[email protected]> wrote: > >> >> >> On Wed, Jan 26, 2022 at 2:00 PM Ben Wilson <[email protected]> wrote: >> >>> See responses inline below. >>> >>> On Tue, Jan 25, 2022 at 11:12 PM Ryan Sleevi <[email protected]> wrote: >>> >>>> It’s not clear: what situations make it appropriate for a CA >>>> communication, versus discussion here? >>>> >>> >>> Yes. It is preferable that discussion take place here. However, a >>> survey would still be public, as they have been in the past, and the CCADB >>> would collect all of the responses in a table format. >>> >> >> Oh, for sure :) I just know that the surveys have historically had delays >> or had confusion by CAs in interpreting questions, and the survey approach >> somewhat predates the m.d.s.p. participation requirement. I totally realize >> that it has benefits for bringing direct awareness, but I raise it to try >> and understand if the expectation is to always have the two parallel paths >> for soliciting feedback, or if it might just be sufficient to email blast >> CAs to say "Hey, here's the discussion, to send feedback, please >> participate here". That, I think, might achieve the goal of highlighting >> the importance, while still centralizing some of the conversation :) Just a >> thought >> >> -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/616590a5-7216-4514-b4c3-1a96f521e3a3n%40mozilla.org.
