Le lundi 16 mars 2015 19:47:30 UTC+1, Ryan Sleevi a écrit : > On Mon, March 16, 2015 10:24 am, Erwann Abalea wrote: > > Le lundi 16 mars 2015 10:29:08 UTC+1, Kurt Roeckx a écrit : > > > On 2015-03-14 01:23, kim....@safe-mail.net wrote: > > > > Is there an agreed timeline for deprecation of the technologies listed > > > in the initial posting? We should be proactive in this field. > > > > > > > > For example, last month a plan to deploy 12000 devices to medical > > > professionals has been finalised, despite the devices using 1024bit > > > RSA keys - on the grounds that it works in current browsers and will > > > likely keep working for the next 10 years. I am not happy about such > > > outcomes. > > > > > > Whoever thinks that this will keep working for the next 10 years is > > > clearly misinformed. CAs should not be issuing such certificates. If > > > they do, please let us know which CA does that so we can talk to them > > > about revoking them. > > > > There's nothing in the OP post saying those certificates would be issued > > under a public CA. > > My goal is to phase these out in Chrome by the end of the year. We have > ample evidence that suggests this is reasonable.
Phase RSA1024 out? I vote for it. Where's the ballot? :) -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
