[whatwg] Only allow md5WithRSAEncryption with <keygen keytype=rsa>?
Ian Hickson
ian at hixie.ch
Thu Oct 22 19:33:59 PDT 2009
On Wed, 21 Oct 2009, Adam Roben wrote:
>
> HTML5 currently says that the signature algorithm used with <keygen
> keytype=rsa> should be any of "those listed in section 2.2.1 ('RSA
> Signature Algorithm') of RFC 3279."
>
> However, both WebKit and Gecko only ever use the md5WithRSAEncryption
> signature algorithm. And apparently WebKit ran into compatibility issues
> with MIT's websites back in 2004 when it tried to use the id-sha1
> signature algorithm instead.
>
> I'd recommend that HTML5 change to say that only the
> md5WithRSAEncryption signature algorithm should be used for <keygen
> keytype=rsa>.
Done.
--
Ian Hickson U+1047E )\._.,--....,'``. fL
http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,.
Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'
More information about the whatwg
mailing list