For client certificates, it doesn't really matter what Mozilla thinks -- it matters what the website thinks when you present the client cert.
On Wed, Apr 27, 2016 at 7:48 AM, <vazmu...@gmail.com> wrote: > Hi ! I read " > https://blog.mozilla.org/security/2015/10/20/continuing-to-phase-out-sha-1-certificates/"; > article but my question is what about Client authentication certificates > that are issued using SHA-1 like Qualified Certificates issued to clients > in order to make client authenticated SSL connection and > sign/encrypt/decrypt documents? Are they going to be valid and until when ? > _______________________________________________ > dev-security-policy mailing list > dev-security-policy@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-security-policy > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
