Re: Appropriate role for lists of algorithms and key sizes

On Fri, Jan 27, 2017 at 3:47 AM, Gervase Markham wrote: > > * RSA keys with a minimum modulus size of 2048 bits > Nits and niggles: Perhaps 2048, 3072, 4096? - 8K RSA keys cause Web PKI interop problems - RSA keys that aren't modulo 8 create interop problems > 2) Brian has

Re: Misissued/Suspicious Symantec Certificates

On Friday, 27 January 2017 12:11:06 UTC, Gervase Markham wrote: > * It's not clear what the problem is with the issuance in category F. I > don't see any mention of "dev119money.com" in Andrew's initial report. > Can you explain (and provide a crt.sh link)? https://crt.sh/?id=48539119 appears to

Re: Misissued/Suspicious Symantec Certificates

Hi Steve, On 27/01/17 01:30, Steve Medin wrote: > Here is an attached PDF update regarding this certificate problem report. Thanks for the update. Here are some questions: * It's not clear what the problem is with the issuance in category F. I don't see any mention of "dev119money.com" in

Re: Policy 2.4 Proposal: Codify requirements relating to Common CA Database into the policy

On 27/01/2017 10:06, Gervase Markham wrote: On 26/01/17 14:12, Jakob Bohm wrote: Given that Mozilla has been reducing the scope and generality of their root store over the past few years, I would suggest reaching out to those organizations that base their public root stores on the Mozilla