[cabfpub] SHA1 options for payment processors

Rob Stradling rob.stradling at comodo.com
Thu Mar 10 20:04:57 UTC 2016

On 10/03/16 17:30, Dean Coclin wrote:
> As I said earlier, there are legacy reasons why these are Symantec
> customers but that shouldn’t have a bearing into finding a solution.
> What if this related to Western Digital customers that are exclusive to
> Comodo?

Hi Dean.

I'm not sure why you picked https://crt.sh/?caid=6471 as an example. 
The intermediate certificate is signed using sha384WithRSAEncryption, 
and it signs end-entity server authentication certificates (that are in 
scope for the BRs) using sha256WithRSAEncryption.

No SHA-1 involved.  Also, AIUI, web browsers are the intended clients.

Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online

More information about the Public mailing list