Confirmed users, Administrators
5,526
edits
CA/Forbidden or Problematic Practices: Difference between revisions
CA/Forbidden or Problematic Practices (view source)
Revision as of 21:14, 12 September 2014
, 12 September 2014→SHA-1 Certificates
| Line 109: | Line 109: | ||
CAs should not be issuing new SHA-1 certificates, and should be migrating their customers off of SHA-1 intermediate and end-entity certificates. | CAs should not be issuing new SHA-1 certificates, and should be migrating their customers off of SHA-1 intermediate and end-entity certificates. | ||
If a CA still needs to issue SHA-1 certificates for compatibility reasons, then those SHA-1 certificates should | If a CA still needs to issue SHA-1 certificates for compatibility reasons, then those SHA-1 certificates should expire before 2017. | ||
=== Generic names for CAs === | === Generic names for CAs === | ||