On Thursday, 22 August 2013 09:09:06 UTC+3, Mikko Rantalainen wrote:
> If we really believed that shorter lifetime is required for the keys,
> we would be replacing those CA keys already.
I'd like to add that in my opinion, the lifetime should be decided by the user
agent (default) or by the use
On Friday, 16 August 2013 12:01:51 UTC+3, Gervase Markham wrote:
> On 15/08/13 11:22, Mikko Rantalainen wrote:
>
> > No. The site's public key does not need to be changed to request a
> > new certificate.
>
> Technically, no. But there are other occasions on which it does - key
> length upgrade
