Closed
Bug 1212655
Opened 9 years ago
Closed 7 years ago
StartCom: public exponent is 1
Categories
(CA Program :: CA Certificate Root Program, task)
CA Program
CA Certificate Root Program
Tracking
(Not tracked)
RESOLVED
WONTFIX
People
(Reporter: kathleen.a.wilson, Assigned: kathleen.a.wilson)
References
Details
(Whiteboard: BR Compliance)
Attachments
(1 file)
2.32 KB,
application/x-x509-ca-cert
|
Details |
The cert for the following site has public exponent 1 https://secure-1.lukegb.com According to section 6.1.6 of version 1.3 of the CA/Browser Forum Baseline Requirements: "RSA: The CA SHALL confirm that the value of the public exponent is an odd number equal to 3 or more."
Assignee | ||
Comment 1•9 years ago
|
||
Eddy, Even though Firefox rejects the cert, it is not in compliance with the BRs.
Comment 2•9 years ago
|
||
Comment 3•9 years ago
|
||
We are revoking this certificate and will check if there are some more. Additionally we'll verify that checks on submitted CSR will detect an exponent lower than 3.
Assignee | ||
Updated•8 years ago
|
Whiteboard: BR Compliance
Comment 4•7 years ago
|
||
Resolving; if StartCom becomes trusted again, they are unlikely to have the same issues. Gerv
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → WONTFIX
Updated•7 years ago
|
Product: mozilla.org → NSS
Updated•2 years ago
|
Product: NSS → CA Program
You need to log in
before you can comment on or make changes to this bug.
Description
•