Duane wrote:
Currently we (CAcert.org) are trying to adopt sha256 or better instead of md5 and sha1 for certificate digest signing and I'm trying to find out the earliest version of firefox/seamonkey that supported sha256 and/or sha512.
NSS 3.8 or later supports SHA-256 with RSA. NSS 3.10.2 or later supports SHA-256, SHA-384, and SHA-512 with RSA. NSS 3.10.2 is in Firefox/Thunderbird 1.5 RC1 and will be in Firefox/Thunderbird 1.5 final. You can find the NSS versions used in other Mozilla client releases in http://www.mozilla.org/projects/security/pki/nss/mozilla-nss-versions.html. In summary: - Mozilla Application Suite 1.4-1.4.2 supports SHA-256 with RSA. - Mozilla Application Suite 1.5 and 1.6: unknown. Note: these are not widely used because they are not based on long-term Mozilla release branches (MOZILLA_1_4_BRANCH and MOZILLA_1_7_BRANCH). - Mozilla Application Suite 1.7, Firefox 1.0, and Thunderbird 1.0 support SHA-256 with RSA. - Firefox 1.5 and Thunderbird 1.5 will support SHA-256, SHA-384, and SHA-512 with RSA. Wan-Teh _______________________________________________ mozilla-crypto mailing list mozilla-crypto@mozilla.org http://mail.mozilla.org/listinfo/mozilla-crypto