[145979] in cryptography@c2.net mail archive
Re: Formal notice given of rearrangement of deck chairs on RMS PKItanic
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Thu Oct 7 09:45:20 2010
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: cryptography@metzdowd.com, Victor.Duchovni@morganstanley.com
In-Reply-To: <20101006154820.GN11550@np305c2n2.ms.com>
Date: Thu, 07 Oct 2010 16:29:41 +1300
Victor Duchovni <Victor.Duchovni@morganstanley.com> writes:
>What are "EE certs", did you mean "EV"?
End-entity certs, i.e. non-CA certs. This means that potentially after the
end of this year and definitely after 2013 it will not be possible to use any
key shorted than 2048 bits with Firefox. Anyone using, for example, an
embedded device adminstered via SSL will have to use another browser.
From the discussion on the Mozilla policy list I get the impression that this
move has been given pretty much zero thought beyond "we need to do what NIST
wants".
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
