Two weeks ago Viktor Dukhovni wrote: > Actually, SHA-2 SHOULD NOT (yet) be used for signing certificates. > > Many TLSv1 clients don't support SHA-2 and servers must present > SHA-1 certificates except when TLSv1.2 clients indicate SHA-2 support. > Fielding multiple certificates with different > signature algorithms is too complex.
----------------------------- Good point. Microsoft isn't rushing to drop recognition of SHA-1 signatures: http://arstechnica.com/security/2013/11/hoping-to-avert-collision-with-disaster-microsoft-retires-sha1/ " The company's software will stop recognizing the validity of digital certificates that use the SHA1 cryptographic algorithm after 2016 ..." Thanks, Paul ---------------------------------------------------------------------- The information contained in this transmission may be confidential. Any disclosure, copying, or further distribution of confidential information is not permitted unless such privilege is explicitly granted in writing by Quantum. Quantum reserves the right to have electronic communications, including email and attachments, sent across its networks filtered through anti virus and spam software programs and retain such messages in order to comply with applicable data security and retention requirements. Quantum is not responsible for the proper and complete transmission of the substance of this communication or for any delay in its receipt. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
