Hi Robert, I just wondered about that one:
Robert Relyea wrote: > There is also a critical difference between the Hashing and the > keysize..... Once a CA chooses it's keysize, then all certs signed by > that CA will be signed with that key. If 1024 bits is weak, the CA > can't issue a new subordinate CA which is signed with a 2048 bit > signature (and vice versa). And why not? -- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: [EMAIL PROTECTED] Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
