You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Now that it appears at least one publicly trusted CA will be using one of the methods described in RFC 7093 for SKI calculation [1], SubjectKeyIdentifierValidator should be updated to detect the usage of these methods.
v0.9.9 will implement detection of the first three methods defined in RFC 7093. Implementing the fourth method is a challenge due to any hash algorithm being allowed.
Will revisit the decision to not implement detection of method 4 if any adoption of the method is seen.
Now that it appears at least one publicly trusted CA will be using one of the methods described in RFC 7093 for SKI calculation [1], SubjectKeyIdentifierValidator should be updated to detect the usage of these methods.
[1] https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/L7XoAXt_s1c/m/Hil4RxrYAAAJ
The text was updated successfully, but these errors were encountered: