Confirm, administrator
5,526
edits
Changes
m
→Dates for Phasing out MD5-based signatures and 1024-bit moduli
High Level Summary of Dates:
* '''June 30, 2011''' – Mozilla will stop accepting MD5 as a hash algorithm for intermediate and end-entity certificates. After this date software published by Mozilla will return an error when a certificate with an MD5-based signature is used.
* '''December 31, 2010''' – CAs must stop issuing intermediate and end-entity certificates from roots with RSA key sizes smaller than 2048 bits. All CAs must stop issuing intermediate and end-entity certificates with RSA key size smaller than 2048 bits under any root.
* '''December 31, 2013''' – Mozilla will disable or remove all root certificates with RSA key sizes smaller than 2048 bits.
