[upki-odcert:00084] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B

Subject: [upki-odcert:00084] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
Date: Wed, 03 Dec 2014 09:36:38 +0900
From: Mitsuru Ogino <xxxxxxx@xxxxxxxxxxxxxxxx>

$B?z;3=w3X1`$N2.Ln$G$9!#(B

Yasuo Okabe wrote on 2014/12/02 17:28:
> $B5~ETBg3X$N2,It$G$9!#(B
> 
> Google Chrome $B$N(BSHA-1$B>ZL@=q$N%"%i!<%HI=<($O!"$A$g$C$HM&$_B-$H$$$&$+:.Mp(B
> $B$r>7$/$H;W$C$F$$$^$9!#$3$N$"$?$j$K>\$7$$$G$9!#(B
>> http://blog.livedoor.jp/k_urushima/archives/1750289.html

$B$3$N%5%$%H$O$H$F$b;29M$K$J$j$^$7$?!#(B

$B$3$NCf$N!VBP1~%]%j%7$NLdBjE@!W$N!VM-8z4|8B$ND9C;$K$+$+$o$i$:!"$"$k;~E@$G(B
$B$N0E9f4mKX2=$NDxEY$OA4$/F1$8!W$G$"$k$K$b4X$o$i$:%9%F!<%?%9I=<($,0[$J$k$N(B
$B$O$*$+$7$$$H$$$&$N$OA4$/$=$NDL$j$@$H;W$o$l$^$9!#(B

$B$?$@!"(B

> $BA0=R$N(BOS$B$J$I$N%l%Y%k$G%"%k%4%j%:%`$H$7$F(BSHA2$B=pL>$r%5%]!<%H$7$F$$$?$H(B
> $B$7$F$b!"8!>Z$J$I$G;H$*$&$H$9$k(BSHA2$B>ZL@=q$N%H%i%9%H%"%s%+$H$J$k%k!<%H(B
> $B>ZL@=q$,!V?.Mj$9$k%k!<%H>ZL@=q!W%9%H%"$KF~$C$F$$$k$+$I$&$+$OJL$NLdBj!#(B
> $BNc$($PA4$F$N$*5RMM$d!"A4ZL@=q$rDI(B
> $B2C$5$;$k$H$$$&;v$O$+$J$j:$Fq!#(B 

$B$H$$$&$N$O4*0c$$$N$h$&$K8+$($^$9!#%k!<%H>ZL@=q$O?.Mj@-$N8!>Z$,$5$l$J$$$N(B
$B$G(B SHA-1 $B$+$I$&$+$OLdBj$K$5$l$J$$$N$G$O$H;W$$$^$9!#(B

> Note: SHA-1-based signatures for trusted root certificates are not
> a problem because TLS clients trust them by their identity, rather
> than by the signature of their hash.
http://googleonlinesecurity.blogspot.jp/2014/09/gradually-sunsetting-sha-1.html


$B$^$?!"!V:G6a$N%b%@%s$J%V%i%&%6$G$O(BSHA2$B>ZL@=q$KBP1~$7$F$$$^$9$,!"!W$N$/$@(B
$B$j$b(B SSL 3.0 $B$rL58z2=$9$kA0Ds$@$H!"8E$$%/%i%$%"%s%H$O8.JB$_@\B3$G$-$J$$(B
$B$N$G!"$=$l$[$ILdBj$K$J$i$J$$!J$H$$$&$+(B SSL 3.0 $B$rL58z2=$9$k;~E@$GLdBj$K(B
$B$J$k!K$N$G$O$H;W$$$^$7$?!#(B


> $B$H$O$$$(J86g$r8@$C$F$b(BGoogle$B$,9M$(D>$7$F$7$F$/$l$J$$$3$H$K$O$I$&$7$h$&$b(B
> $B$J$$$N$G!"?7%5!<%S%9$G(BSHA-2$B$,H/9T$G$-$k$N$h$&$K$J$k$N$r?4BT$A$K$7$F$$$^$9!#(B

$B7k6I!"$3$&$J$j$^$9$M!#(B


-- 
$B2.Ln(B $B=<(B ($B$*$.$N(B $B$_$D$k(B) ... $B!VGk(B($B$O$.(B)$B!W$K$"$i$:(B
GPG Key fingerprint = 7F26 5414 1805 F31B 1617  10B7 C117 07AE 1691 9BD1

Follow-Ups:
- [upki-odcert:00085] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
  - From: Takeshi NISHIMURA

References:
- [upki-odcert:00077] SSLCipherSuite
  - From: Mitsuru Ogino
- [upki-odcert:00078] Re: SSLCipherSuite
  - From: Takeshi NISHIMURA
- [upki-odcert:00080] Google Chrome $B$N(B SHA-1 $B>ZL@=qI=<((B
  - From: Mitsuru Ogino
- [upki-odcert:00081] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
  - From: Yasuo Okabe

Prev by Date: [upki-odcert:00083] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
Next by Date: [upki-odcert:00085] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
Previous by thread: [upki-odcert:00089] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
Next by thread: [upki-odcert:00085] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B
Index(es):
- Date
- Thread

[upki-odcert:00084] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B

[upki-odcert:00084] Re: Google Chrome $B$N(B SHA-1 $B>ZL@=q(B$BI=<((B