Bugzilla – Bug 6609
Add randomess to GS-CA signed certificates
Last modified: 2009-12-17 20:53:48
You need to
before you can comment on or make changes to this bug.
Adding randomness to the serial numbers of GS-CA signed certificates would
mitigate threats posed by current MD5 attacks (and other hash algorithms in the
See Bug 6614 for details.
I'm removing this as a blocker from 2.0 as it is, in my judgment, not a big
security risk at this time.