It doesn't, it applies to the entire cert chain (minus the root). DigiCert's non... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

_pghu on Sept 6, 2014 | parent | context | favorite | on: Gradually sunsetting SHA-1

It doesn't, it applies to the entire cert chain (minus the root). DigiCert's non-EV intermediate cert (DigiCert Secure Server CA) is SHA1, so until they fix that, all DigiCert users are still going to be affected.

iancarroll on Sept 7, 2014 [–]

I missed the mention about the chain, sorry.

They do operate an SHA256 intermediary, "DigiCert SHA2 Secure Server CA". They also operate "DigiCert SHA2 Extended Validation Server CA". Both are documented here: https://www.digicert.com/digicert-root-certificates.htm#inte...

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact