What algorithm does RCM used to sign the certificates?

2 years ago

Originally Published: 2009-01-08

Article Number

000065888

Applies To

RSA Certificate Manager 6.8
RSA Certificate Manager (RCM)
RSA Public Root Signing
Secure Hash Algorithm (SHA-1)
Message-Digest Algorithm (MD5)

Issue

What algorithm does RCM used to sign the certificates?
What algorithm does the RSA Root CA use?
Customer wants to know what algorithm used to sign the certificate?
Recent vulnerability reported for the MD5 algorithm
Web sites regarding MD5 vulnerability:

http://www.win.tue.nl/hashclash/rogue-ca/

http://www.rsa.com/blog/blog_entry.aspx?id=1411

http://broadcast.oreilly.com/2008/12/the-sky-is-not-falling-on-toda.html

Resolution

When a new CA certificate is created with RCM, by default the algorithm is set to use SHA1. This can be changed to use other algorithm if desired.

Don't see what you're looking for?

Potential Impact from Salesforce Device Activation Change