aarongable
commented
2 years ago Closing this because we're moving away from SHA1 (see #17)
Closed aarongable closed 2 years ago
aarongable
commented
2 years ago Closing this because we're moving away from SHA1 (see #17)
The choice to mandate sha1 for the issuer name hash and issuer key hash is based on rfc5019 "Lightweight OCSP Profile" and the fact that the purpose of the hash is non-cryptographic. Include a sentence or two with this same info in the security considerations section.