Closed
Bug 1269183
Opened 9 years ago
Closed 9 years ago
StartCom: Certificates using secp256k1
Categories
(CA Program :: CA Certificate Root Program, task)
CA Program
CA Certificate Root Program
Tracking
(Not tracked)
RESOLVED
WONTFIX
People
(Reporter: kurt, Assigned: eddy_nigg)
References
Details
(Whiteboard: BR Compliance)
Hi,
I see a few certificates like https://crt.sh/?id=17662860 that use secp256k1, which isn't one of the 3 allowed curves by the BR.
|
Reporter | |
Updated•9 years ago
|
Blocks: BR-Compliance
|
||
Updated•9 years ago
|
Assignee: kwilson → eddy_nigg
|
Assignee | |
Comment 1•9 years ago
|
||
StartCom has only recently started to support elliptic curves and will allow only the currently permitted signatures. Remaining certificates with non-compliant curves will be replaced and revoked.
|
||
Updated•9 years ago
|
Flags: sec-bounty?
Flags: needinfo?(eddy_nigg)
|
|
||
Updated•9 years ago
|
Whiteboard: BR Compliance
|
|
||
Updated•9 years ago
|
Summary: startcom: Certificates using secp256k1 → StartCom: Certificates using secp256k1
|
|
||
Comment 2•9 years ago
|
||
Resolving; if StartCom becomes trusted again, they are unlikely to have the same issues.
Gerv
Status: UNCONFIRMED → RESOLVED
Closed: 9 years ago
Resolution: --- → WONTFIX
|
||
Updated•8 years ago
|
Product: mozilla.org → NSS
|
||
Updated•3 years ago
|
Product: NSS → CA Program
You need to log in
before you can comment on or make changes to this bug.
Description
•