William A. Rowe, Jr. wrote:
> Hagai asks how prevalent such exponent 3 public or commercial
> signing keys still are? Someone stated they are in "wide use".
> This is not 'private' information, and Hagai just asked if someone
> has done the actual research of affected public/commercial signing
> a
Hagai,
From my research I found that there are some known CA that use exponent of 3 (and some hardware implementation that use that as default).
About your ca, if you know that all your components (browsers and/or applications) that will be involved will have good PKCS#1 implementation, then you
Marek Marcola wrote:
> Hello,
>> I have read the advisory an I am a bit puzzled regarding the there are
>> CAs using exponent 3 in wide use comment, I have tried to check and
>> could not found any CA using this exponent, all the CA’s I have seen
>> are using 0x10001 (CA’s I have generate by OpenSS
On Wed, Sep 06, 2006, Hagai Yaffe wrote:
>
> I have read the advisory an I am a bit puzzled regarding the there are
> CAs using exponent 3 in wide use comment, I have tried to check and
> could not found any CA using this exponent, all the CA's I have seen are
> using 0x10001 (CA's I have generat
Hello,
> I have read the advisory an I am a bit puzzled regarding the there are
> CAs using exponent 3 in wide use comment, I have tried to check and
> could not found any CA using this exponent, all the CA’s I have seen
> are using 0x10001 (CA’s I have generate by OpenSSL using default
> values, w
