Ian G wrote, On 2008-12-30 13:38: > [...] is there any difficulty with announcing today that NSS is > going to deprecate MD5 and earlier algorithms, totally, for all > purposes, including Firefox and Thunderbird. > > (Leave off the date as to when the rejection will take effect.)
The NSS team is preparing for a possible move in that direction. See bug https://bugzilla.mozilla.org/show_bug.cgi?id=471539 But there's presently no decision made about when it might happen. > The point is not when NSS does it, or when Firefox does it, but when all > the CAs stop issuing them, and replace them. The more noise we make > now, the earlier they are likely to act. > > (figure out a date later...) A representative of Verisign has posted a response to this issue at https://blogs.verisign.com/ssl-blog/2008/12/on_md5_vulnerabilities_and_mit.php > I propose it be announced today if not sooner ! > > Votes, disagreements? _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
