[SSL Observatory] Duplicate private keys
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Tue Apr 5 20:29:27 PDT 2011
Andrew Birrell <birrell at microsoft.com> writes:
+----------------------+----------+
| Algorithm | Count |
+----------------------+----------+
| RSA | 5603192 |
| 1.2.840.10045.2.1 | 6 | <- ECDSA, almost certainly test certs.
| DSA | 2890 |
| 1.2.643.2.2.19 | 359 | <- One of the GOSTs
| 0.0 | 1 | <- ?. Could I get the cert?
| 1.2.643.2.2.20 | 18 | <- One of the GOSTs
| 1.3.14.3.2.12 | 3 | <- SDN.701 error DSA
| 1.2.840.113536.1.1.1 | 1 | <- Something from Sun (113536 = Sun)
+----------------------+----------+
For ECDSA, I can probably name the servers: Microsoft's WoodgroveBank test
server, the Certicom test server, the Red Hat test server, Mike's test server,
the RSA test server, and the GnuTLS test server.
The SDN.701 one is bizarre, what time warp did that escape from?
I wonder what caused the discrepancy, ~3K vs 25 DSA certs?
Amusing to see there are sixty times as many GOST certs deployed as ECDSA
certs :-).
Peter.
More information about the Observatory
mailing list