search

os3sec / Extended-DNSSEC-Validator

Firefox add-on for verification of x509 certificates using DNSSEC as bootstrap mechanism
http://os3sec.org
15 stars 9 forks source link

Support more hashing algorithms #3

Closed plange closed 13 years ago

plange commented 13 years ago

We currently only support SHA1. Might not be a wise decision. (http://www.google.com/search?q=sha1+vulnerable)

dannygroenewegen commented 13 years ago

TLSA draft v11 specifies SHA256 and SHA512 as required hashing algorithms. Both are implemented in version 0.5+