Last Comment Bug 227097 - display and record certificate key length and algorithm when communicating via SSL
: display and record certificate key length and algorithm when communicating vi...
Status: NEW
:
Product: Thunderbird
Classification: Client Software
Component: Mail Window Front End (show other bugs)
: unspecified
: x86 Windows 2000
: -- enhancement with 3 votes (vote)
: ---
Assigned To: Nobody; OK to take it and work on it
:
Mentors:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2003-11-30 00:00 PST by Ralf Hauser
Modified: 2010-06-24 08:52 PDT (History)
1 user (show)
See Also:
Crash Signature:
(edit)
QA Whiteboard:
Iteration: ---
Points: ---


Attachments

Description Ralf Hauser 2003-11-30 00:00:46 PST
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.5b) Gecko/20030907
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.5b) Gecko/20030907

When sending or receiving a mail via SSL, I want to be able to know with what
certificate this happens:
- at least in the sent folder, it should be possible to open that certificate
and see who issued it, what algorithm it uses (RSA vs DSA), what key size,
expiration, etc.

Reproducible: Always

Steps to Reproduce:
1.
2.
3.

Actual Results:  
even more comfortable would be if a user can see configure the mail program such
that it displays the certificate algortithms and key lengths, issuer,
expiration, etc. before any sensitive information leaves my client

Expected Results:  
the "gap-less security trail" RFE same applies also to the inbox

Bug 227096 is the analogous RFE to give accountability on the corresponding past
SSL session encryption security
Comment 1 Ralf Hauser 2003-11-30 01:03:35 PST
for completion of the log, it would also be necessary to record the IP address
of the smpt server used then (if no Cert is recorded, also the fully qualified
host name would be useful)
Comment 2 Jo Hermans 2003-11-30 08:55:18 PST
ref mail/news bug 214605
Comment 3 Ralf Hauser 2004-09-30 02:24:32 PDT
see also the corresponding RFE at gnu's JavaMail
https://savannah.gnu.org/support/index.php?func=detailitem&item_id=103418
Comment 4 Ralf Hauser 2005-09-17 06:00:49 PDT
Now that 1024 bit RSA keys are under attack
(http://lists.virus.org/cryptography-0509/msg00080.html), it it becoming
increasingly important to 
1) be able to go beyond 1024 bit length keys
2) Display what lenght a currently used key has...

Note You need to log in before you can comment on or make changes to this bug.