[cabfpub] Application for SHA-1 Issuance

Geoff Keating geoffk at apple.com
Thu Jul 21 12:48:06 MST 2016


> On 21 Jul 2016, at 11:23 AM, Dean Coclin <Dean_Coclin at symantec.com> wrote:
> 
> "The value at the end of the OU, is an independent cryptographically created
> identity value used by TSYS Support for the sole purpose of identifying the
> site where the services terminate.

Numerous people have commented on this item.  It appears cryptographically suspicious.  I doubt any explanation will make it less suspicious.  I would therefore encourage TSYS to remove it (or replace the random data with ‘aaaa’ as necessary to fit their format) in a new request.  The new request should use preferably the public key from a previous certificate, or at least the key from this certificate, and otherwise have minimal changes.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3321 bytes
Desc: not available
Url : https://cabforum.org/pipermail/public/attachments/20160721/e72be844/attachment.bin 


More information about the Public mailing list