[cabfpub] Proposed addition to BRs allowing issuance of <2048

Eddy Nigg (StartCom Ltd.) eddy_nigg at startcom.org
Fri Jun 14 14:27:23 UTC 2013

On 06/14/2013 12:06 PM, From Horne, Rob:
> To my mind the issue here is the compliance requirements are too browser centric, which isn't necessarily a bad thing but will continue to throw up problems for non-browser usage of SSL and PKI in general. Using separate roots is one idea but as pointed out currently the number allowed in mainstream root programs is limited.

Just for the record, are RSA keys with 1024 bit somehow stronger when 
not used on the web?

Signer: 	Eddy Nigg, COO/CTO
	StartCom Ltd. <http://www.startcom.org>
XMPP: 	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: 	Join the Revolution! <http://blog.startcom.org>
Twitter: 	Follow Me <http://twitter.com/eddy_nigg>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20130614/ba7198fb/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4540 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.cabforum.org/pipermail/public/attachments/20130614/ba7198fb/attachment-0001.p7s>

More information about the Public mailing list