openid.net - MD5 SSL cert?

https://openid.net/ really shouldn't be using an MD5-hashed cert months after Sotirov presented his research demonstrating the flaws. Perhaps SHA-1 with an eye to moving to SHA-2 as soon as practical and SHA-3 as soon as it's finalized.

27 votes

Vote

(thinking…)

Facebook

Google

Forgot password?

Create a password

Signed in as (Sign out)

You have left! (?) (thinking…)

Alois Hammer shared this idea · May 29, 2009 · Flag idea as inappropriate… · Admin →

started

4 comments

Add a comment…

(thinking…)

Facebook

Google

Forgot password?

Create a password

Signed in as (Sign out)

Submitting...

An error occurred while saving the comment

Admindaveman692 (Admin, OpenID) commented · May 30, 2009 11:18 · Flag as inappropriate

We're working on replacing the certificate on OpenID.net over the next few days.

Submitting...
Alois Hammer commented · May 29, 2009 12:40 · Flag as inappropriate

Chris: 'perciate it. I'd like to see OpenID succeed, and the cert situation's slightly unsettling.

Submitting...
AdminChris Messina (Admin, OpenID) commented · May 29, 2009 12:02 · Flag as inappropriate

ideas.openid.net is hosted by UserVoice.

As for the cert on OpenID.net, I can ask around and see what the thinking is so far.

Submitting...
Alois Hammer commented · May 29, 2009 11:47 · Flag as inappropriate

...and now that I notice, https://ideas.openid.net/ presents a cert for uservoice.

Submitting...

My idea is ...

openid.net - MD5 SSL cert?

4 comments

Feedback

Ideas

Feedback and Knowledge Base

Searching…

Give feedback

OpenID

Your password has been reset