On Sep 4, 2013, at 2:15 PM, Andy Steingruebl wrote:
> As of Jan-2014 CAs are forbidden from issuing/signing anything less than 2048
> certs.
For some value of "forbidden". :-)
--Paul Hoffman
___
The cryptography mailing list
cryptography@metzdowd.c
On Wed, Sep 4, 2013 at 3:54 PM, Paul Hoffman wrote:
> On Sep 4, 2013, at 2:15 PM, Andy Steingruebl wrote:
>
> > As of Jan-2014 CAs are forbidden from issuing/signing anything less than
> 2048 certs.
>
> For some value of "forbidden". :-)
>
This is why you're seeing Mozilla and Google implementi
On Wed, Sep 4, 2013 at 6:58 PM, Andy Steingruebl wrote:
> On Wed, Sep 4, 2013 at 3:54 PM, Paul Hoffman wrote:
>
>> On Sep 4, 2013, at 2:15 PM, Andy Steingruebl wrote:
>>
>> > As of Jan-2014 CAs are forbidden from issuing/signing anything less
>> than 2048 certs.
>>
>> For some value of "forbidde
On Mon, Sep 2, 2013 at 3:04 PM, Jeffrey I. Schiller wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Mon, Sep 02, 2013 at 03:09:31PM -0400, Jerry Leichter wrote:
> > Google recently switched to 2048 bit keys; hardly any other sites
> > have done so, and some older software even has