info
Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Removing Government of France root certificate -- issuance of SHA-1 certs detected
325 views
Skip to first unread message
Kathleen Wilson
Sep 22, 2016, 2:02:40 PM9/22/16
to mozilla-dev-s...@lists.mozilla.org
All,
In https://bugzilla.mozilla.org/show_bug.cgi?id=1301731 it was reported that SHA-1 SSL certs have recently been issued in the IGC/A CA Hierarchy that is owned by Government of France (ANSSI,DCSSI).
This root cert was already name constrained via
https://bugzilla.mozilla.org/show_bug.cgi?id=952572
And was already slated for removal after this year via
https://bugzilla.mozilla.org/show_bug.cgi?id=1272156
Since recently issued SHA-1 SSL certs have been detected, we are going to speed up the removal of this root cert. The CA has been cooperative, and they are working with their customer to remove these SHA-1 certificates. The CA has requested that their root cert be removed, in order to avoid this type of situation in the future.
Kathleen
In https://bugzilla.mozilla.org/show_bug.cgi?id=1301731 it was reported that SHA-1 SSL certs have recently been issued in the IGC/A CA Hierarchy that is owned by Government of France (ANSSI,DCSSI).
This root cert was already name constrained via
https://bugzilla.mozilla.org/show_bug.cgi?id=952572
And was already slated for removal after this year via
https://bugzilla.mozilla.org/show_bug.cgi?id=1272156
Since recently issued SHA-1 SSL certs have been detected, we are going to speed up the removal of this root cert. The CA has been cooperative, and they are working with their customer to remove these SHA-1 certificates. The CA has requested that their root cert be removed, in order to avoid this type of situation in the future.
Kathleen
0 new messages