Custom Query (196 matches)
Results (196 of 196)
Ticket | Resolution | Summary | Owner | Reporter |
---|---|---|---|---|
#400 | fixed | SHA-1 certificates from mitcert since 2013 will be degraded by Chrome | andersk | |
Description |
davidben points out that Chrome will be degrading SHA-1 certificates valid past 2016-01-01:
This seems to include all certificates that mitcert/InCommon has issued (and continues to issue!) since 2013-01-01, since they have a three year expiration date. So we’re going to need to replace all these certificates soon. This might also be a good excuse to move to a 2048-bit private key (because a 4096-bit certificate signed by 2048-bit CAs provides no security benefit and is noticeably slower). |
Note: See TracQuery
for help on using queries.