Re: Incident report: Issuance of certificates with curve-hash pairs no longer allowed by the Mozilla Root Store Policy

Thank you for this incident report Fotis. I have created https://bugzilla.mozilla.org/show_bug.cgi?id=1534145 to track this issue. On Fri, Mar 8, 2019 at 4:37 PM Fotis Loukos via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > ### Problem description > > SSL.com has issued

Incident report: Issuance of certificates with curve-hash pairs no longer allowed by the Mozilla Root Store Policy

### Problem description SSL.com has issued a limited number of ECDSA certificates with curve-hash pairs that are no longer allowed by the Mozilla Root Store Policy. In particular, section 5.1 states that: > Root certificates in our root program, and any certificate which chains up to them, MUST