HI there, so Im new here, so please go easy on me :) But Ive been doing some research on what I should and should not be seeing in my firefox preferences certificates and well, it has me a bit worried, Im hoping someone might be able to shed a bit of light for me and let me know if what Im seeing is of concern or not. Everything is either " Built in object token" or "software security device"but under Certificate name I have things such as Actalis S.p.A./03358520967 Athentication Root CA from Milan with the Purposes: Certificate Signing, CRL Signing. or Organization Agencia Catalana de Certificacio (NIF Q-0801176-I) Organizational Unit Serveis Publics de Certificacio Organizational Unit Vegeu https://www.catcert.net/verarrel (c)03 Organizational Unit Jerarquia Entitats de Certificacio Catalanes Common Name EC-ACC from Country- ES Public Key Info: RSA also Purposes Certificate Signing, CRL Signing and: Organizational Unit ePKI Root Certification Authority Organization Chunghwa Telecom Co., Ltd. Algorithm RSA Key Size 4096 Exponent 65537 Signature Algorithm SHA-1 with RSA Encryption
Organization China Financial Certification Authority Common Name CFCA EV ROOT country IN Organizational Unit emSign PKI Organization eMudhra Technologies Limited Common Name emSign Root CA - G1 Organizational Unit AC RAIZ FNMT-RCM Signature Algorithm SHA-256 with RSA Encryption Purposes Certificate Signing, CRL Signing I haVE 3 OF THESE Organization Hellenic Academic and Research Institutions Cert. Authority Common Name Hellenic Academic and Research Institutions RootCA 2011 Signature Algorithm SHA-1 with RSA Encryption Serial Number 00 Purposes Certificate Signing, CRL Signing Organization Japan Certification Services, Inc. Common Name SecureSign RootCA11 Public Key Info Algorithm RSA Key Size 2048 Exponent 65537 Modulus FD:77:AA:A5:1C:90:05:3B:CB:4C:9B:33:8B:5A:14:45:A4:E7:90:16:D1:DF:57: Serial Number 01 Signature Algorithm SHA-1 with RSA Encryption Version 3 Fingerprints SHA-256 BF:0F:EE:FB:9E:3A:58:1A:D5:F9:E9:DB:75:89:98:57:43:D2:61:08:5C:4D:31:4 SHA-1 3B:C4:9F:48:F8:F3:73:A0:9C:1E:BD:F8:5B:B1:C3:65:C7:D8:11:B3 Certificate Authority Yes Key Usages Purposes Certificate Signing, CRL Signing Subject Key ID Key ID 5B:F8:4D:4F:B2:A5:86:D4:3A:D2:F1:63:9A:A0:BE:09:F6:57:B7:DE Few other names: Common Name SSL.com Root Certification Authority RSA Common Name Staat der Nederlanden EV Root CA Common Name Sectigo RSA Domain Validation Secure Server CA Common Name TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1 Organization TAIWAN-CA Organizational Unit Tanúsítványkiadók (Certification Services) Common Name NetLock Arany (Class Gold) Főtanúsítvány These just dont seem right..... ? theres MANY more. can anyone help ? or point me in the right direction as to where I might get help. Just FYI my Mac Keychain has some pretty oddball items in it as well. A lot of Public and Private keys, for items with names simply "key" ( for instance in the Log in keychain) Kind: Public Key, RSA,2,048-bit, usage - encrypt, derive, verify. no effective date no expiry date. and you can not see a password or key. its blank where it should be. Id appreciatte any help. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
