HSM outage causes root CA key loss

Peter Gutmann pgut001 at cs.auckland.ac.nz
Wed Jul 15 09:32:17 EDT 2009

"Jeffrey I. Schiller" <jis at mit.edu> writes:

>Our current Server CA certificate will expire in 2026 (when hopefully it
>won't be my problem!).

Thus the universal CA root cert lifetime policy, "the lifetime of a CA root 
certificate is the time till retirement of the person in charge at its 
creation, plus five years" :-).


The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com

More information about the cryptography mailing list