The choice to mandate sha1 for the issuer name hash and issuer key hash is based on rfc5019 "Lightweight OCSP Profile" and the fact that the purpose of the hash is non-cryptographic. Include a sentence or two with this same info in the security considerations section.
The choice to mandate sha1 for the issuer name hash and issuer key hash is based on rfc5019 "Lightweight OCSP Profile" and the fact that the purpose of the hash is non-cryptographic. Include a sentence or two with this same info in the security considerations section.