Confirm, administrator
5,526
edits
Changes
→Dates for Phasing out MD5-based signatures and 1024-bit moduli
** {{bug|590364}} - "By default, stop accepting MD5 as a hash algorithm in certificate signatures" - Until this bug is fixed, non-Gecko software that uses NSS will still accept MD5 signatures. (Gecko is the layout engine developed by the Mozilla Project, originally called NGLayout.) -- In NSS 3.14
* '''December 31, 2013''' – Mozilla will disable or remove all the SSL and Code Signing trust bits for root certificates with RSA key sizes smaller than 2048 bits. If those root certificates are no longer needed for S/MIME, then Mozilla will remove them from NSS.
'''Caveats to proposed dates:'''
