On Wed, Sep 4, 2013 at 3:54 PM, Paul Hoffman wrote:
> On Sep 4, 2013, at 2:15 PM, Andy Steingruebl wrote:
>
> > As of Jan-2014 CAs are forbidden from issuing/signing anything less than
> 2048 certs.
>
> For some value of "forbidden". :-)
>
This is wh
On Mon, Sep 2, 2013 at 3:04 PM, Jeffrey I. Schiller wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Mon, Sep 02, 2013 at 03:09:31PM -0400, Jerry Leichter wrote:
> > Google recently switched to 2048 bit keys; hardly any other sites
> > have done so, and some older software even has
On Wed, Sep 15, 2010 at 8:39 AM, Peter Gutmann
wrote:
> Some more amusing anecdotes from the world of PKI:
Peter,
Not to be too contrary (though at least a little) - not all of these
are really PKI failures are they?
> - There's malware out there that pokes fake Verisign certificates into the
>