All,
It has come to our attention that Hongkong Post has recently issued a
SHA1 cert that can be used in TLS/SSL.
https://bugzilla.mozilla.org/show_bug.cgi?id=1267332#c3
The certificate was signed by the "Hongkong Post e-Cert CA 1 - 10"
intermediate certificate.
From the CA: "This certificate is issued to a person, instead of a
server, as you've seen that it does not contain any DNS name. "Hongkong
Post e-Cert CA 1 - 10" will continue issue client certificates to
individuals, although it has been stopped issuing SSL server
certificates since 1 January 2016.
Our understanding: "The real problem here is that the issuing
certificate is using sha-1 with predictable serial numbers. ... If a
chosen-prefix attack on sha-1 were discovered... an attacker could use
this CA to obtain a certificate for a domain that isn't theirs."
We are looking into this, and as always will greatly appreciate data
that folks have that will aid in assessing this situation.
Thanks,
Kathleen
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
