[cabfpub] Application for SHA-1 Issuance
Geoff Keating
geoffk at apple.com
Thu Jul 21 19:48:06 UTC 2016
> On 21 Jul 2016, at 11:23 AM, Dean Coclin <Dean_Coclin at symantec.com> wrote:
>
> "The value at the end of the OU, is an independent cryptographically created
> identity value used by TSYS Support for the sole purpose of identifying the
> site where the services terminate.
Numerous people have commented on this item. It appears cryptographically suspicious. I doubt any explanation will make it less suspicious. I would therefore encourage TSYS to remove it (or replace the random data with ‘aaaa’ as necessary to fit their format) in a new request. The new request should use preferably the public key from a previous certificate, or at least the key from this certificate, and otherwise have minimal changes.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3321 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20160721/e72be844/attachment-0001.p7s>
More information about the Public
mailing list