subject:"RE\: Why public key SHA1 is not same as Subject key Identifier"

RE: Why public key SHA1 is not same as Subject key Identifier

2014-11-05 Thread Salz, Rich

Right, that’s the main point. SKI is just an opaque identifier. It “used to” “mostly” be SHA1 of the key, but there was never any requirement that it MUST be so. -- Principal Security Engineer, Akamai Technologies IM: rs...@jabber.me Twitter: RichSalz

Re: Why public key SHA1 is not same as Subject key Identifier

2014-11-05 Thread Jakob Bohm

On 05/11/2014 09:11, Jerry OELoo wrote: Hi All: As I know, When calculate Public key in certificate, it's SHA1 value is equal to Subject Key Identifier in certificate, and I verify this, and found that some websites are follow this. But when I go to www.google.com website, I find the leaf certif

RE: Why public key SHA1 is not same as Subject key Identifier

2014-11-05 Thread Dave Thompson

> From: owner-openssl-us...@openssl.org On Behalf Of Jerry OELoo > Sent: Wednesday, November 05, 2014 03:11 > But when I go to www.google.com website, I find the leaf certificate > and intermediate certificate is ok, but root CA certificate (GeoTrust > Global CA) is not. > Public Key SHA1: > 00:f