Paul Hoffman wrote: > Proposal: > a) Starting January 1 2009, all new CA roots must be 2048 bit RSA or 256 > bit EC.
Why January 1 2009 particularly? By new, do you mean newly-generated, or new to us? Has any CA actually attempted to get a recently-generated 1024-bit root included? > b) Starting January 1 2014, all CA roots must be 2048 bit RSA or 256 bit > EC. It would make most sense to coordinate such a policy with other browser vendors, if possible. Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
