Closed Bug 1212655 Opened 9 years ago Closed 7 years ago

StartCom: public exponent is 1

Categories

(CA Program :: CA Certificate Root Program, task)

Product:
CA Program
Component:
CA Certificate Root Program
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: kathleen.a.wilson, Assigned: kathleen.a.wilson)

References

Details

(Whiteboard: BR Compliance)

Attachments

(1 file)

e1.pem
2.32 KB, application/x-x509-ca-cert
Details 
The cert for the following site has public exponent 1
https://secure-1.lukegb.com

According to section 6.1.6 of version 1.3 of the CA/Browser Forum Baseline Requirements: "RSA: The CA SHALL confirm that the value of the public exponent is an odd number equal to 3 or more."
Eddy, Even though Firefox rejects the cert, it is not in compliance with the BRs.
Attached file e1.pem 

    
    

    
  
We are revoking this certificate and will check if there are some more. Additionally we'll verify that checks on submitted CSR will detect an exponent lower than 3.

    
  
Whiteboard: BR Compliance

    
    

    
  
Resolving; if StartCom becomes trusted again, they are unlikely to have the same issues.

Gerv
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → WONTFIX

    
  
Product: mozilla.org → NSS
Product: NSS → CA Program

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: