On Mon, March 16, 2015 10:24 am, Erwann Abalea wrote: > Le lundi 16 mars 2015 10:29:08 UTC+1, Kurt Roeckx a écrit : > > On 2015-03-14 01:23, kim....@safe-mail.net wrote: > > > Is there an agreed timeline for deprecation of the technologies listed > > in the initial posting? We should be proactive in this field. > > > > > > For example, last month a plan to deploy 12000 devices to medical > > professionals has been finalised, despite the devices using 1024bit > > RSA keys - on the grounds that it works in current browsers and will > > likely keep working for the next 10 years. I am not happy about such > > outcomes. > > > > Whoever thinks that this will keep working for the next 10 years is > > clearly misinformed. CAs should not be issuing such certificates. If > > they do, please let us know which CA does that so we can talk to them > > about revoking them. > > There's nothing in the OP post saying those certificates would be issued > under a public CA.
My goal is to phase these out in Chrome by the end of the year. We have ample evidence that suggests this is reasonable. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
