Re: [saag] [Cfrg] Further MD5 breaks: Creating a rogue CAcertificate
2009-01-05 09:34:40Ben Laurie wrote:
I am not suggesting that we should fix X.509, I am pointing out, in my own roundabout way, that X.509 certs are supposed to have a canonical form. But it seems they do not.
That was last month's major discussion on PKIX. The upshot: there's no canonical form other than what's in memory.
-- Tim
smime.p7s
Description: S/MIME Cryptographic Signature
| Previous by Date: | Re: [saag] Further MD5 breaks: Creating a rogue CA certificate, RJ Atkinson |
|---|---|
| Next by Date: | Re: [saag] [Cfrg] Further MD5 breaks: Creating a rogue CAcertificate, Timothy J. Miller |
| Previous by Thread: | RE: [saag] [Cfrg] Further MD5 breaks: Creating a rogue CAcertificate, Santosh Chokhani |
| Next by Thread: | Re: [saag] [Cfrg] Further MD5 breaks: Creating a rogue CAcertificate, Stephen Kent |
| Indexes: | [Date] [Thread] [Top] [All Lists] |