On 9/1/09 22:25, Johnathan Nightingale wrote:
Still, it's not nothing either, so if we don't mind extrapolating a bit: it seems to me that end of 2010, while further out than I'd like, is probably a good upper bound. At that point we'd have about 4000 valid, md5 certs out there we'd be breaking, out of my sample of 200k, roughly 2% (assuming none of them migrated in the interim).
that's 2 entire years away. OK. How about stating: the target date for RELEASE versions to fully reject MD5 in certificates is *end 2010*. any distro that is not RELEASE, such as new products, developer versions, betas, etc will likely drop MD5 earlier, and probably this year. the target date may be brought forward on whim... Just a thought... iang _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
