CA:MD5and1024: Difference between revisions

Jump to navigation Jump to search

CA:MD5and1024 (view source)

Revision as of 20:26, 26 July 2012

338 bytes added ,  26 July 2012
→‎Dates for Phasing out MD5-based signatures and 1024-bit moduli
m (Put dates in chronological order.)
Line 11: Line 11:


* '''June 30, 2011''' – Mozilla will stop accepting MD5 as a hash algorithm for intermediate and end-entity certificates. After this date software published by Mozilla will return an error when a certificate with an MD5-based signature is used.
* '''June 30, 2011''' – Mozilla will stop accepting MD5 as a hash algorithm for intermediate and end-entity certificates. After this date software published by Mozilla will return an error when a certificate with an MD5-based signature is used.
** This change is being tracked in [https://bugzilla.mozilla.org/show_bug.cgi?id=590364 Bugzilla #590364.]
** {{bug|650355}} - "Stop accepting MD5 as a hash algorithm in signatures (toggle security.enable_md5_signatures to false)" -- Fixed in Mozilla 16 (Firefox 16).
** {{bug|590364}} - "By default, stop accepting MD5 as a hash algorithm in certificate signatures" - Until this bug is fixed, non-Gecko software that uses NSS will still accept MD5 signatures. (Gecko is the layout engine developed by the Mozilla Project, originally called NGLayout.)


* '''December 31, 2013''' – Mozilla will disable or remove all root certificates with RSA key sizes smaller than 2048 bits.  
* '''December 31, 2013''' – Mozilla will disable or remove all root certificates with RSA key sizes smaller than 2048 bits.  
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/455201"

Navigation menu