ADVANCE WARNING: Google moving to 2048-bit SSL and root keys

Jimmy Hess mysidia at gmail.com
Sat May 25 01:34:26 UTC 2013


On 5/24/13, Jay Ashworth <jra at baylink.com> wrote:


Hm..  this might be no big deal if not for public key pinning and CA
pinning in modern browsers of certain sites,  they could just get
themselves 2048 bit certificates from any CA...

So what could otherwise be a routine certificate change, may have some
unusual extra baggage attached to it -- requiring end users performing
software code update in their only slightly outdated browsers,
instead of just switching certificates,   so they stop getting big red
SSL errors when trying to perform searches via Google...


> Via PRIVACY Forum:
>
> ----- Forwarded Message -----
>> From: "PRIVACY Forum mailing list" <privacy at vortex.com>
>
>> Google moving to longer SSL keys
>>
>> http://j.mp/10YAWaC (Google Online Security Blog)

--
-JH



More information about the NANOG mailing list