Removing SHA-1 for signatures in Fedora
Removing SHA-1 for signatures in Fedora
Posted Mar 21, 2022 19:03 UTC (Mon) by hkario (subscriber, #94864)In reply to: Removing SHA-1 for signatures in Fedora by mathstuf
Parent article: Removing SHA-1 for signatures in Fedora
There has been interfaces to perform certificate verification at a given time for decades now.
The thing is that basically no signature includes a trustworthy timestamp that allows you to perform verification at any other time than *now*.
The thing is that basically no signature includes a trustworthy timestamp that allows you to perform verification at any other time than *now*.
Those interfaces are used for systems that handle CAdES or PAdES, not S/MIME, SSH and TLS.