[SSL Observatory] F-Secure reports malware signed by valid cert, Gov. of Malaysia.
Ondrej Mikle
ondrej.mikle at nic.cz
Tue Nov 15 06:20:51 PST 2011
On 11/15/2011 01:53 AM, Peter Gutmann wrote:
> I wonder if this is also a 512-bit key?
Probably not. I don't have the exact cert in question, but all the other
seen certs issued to *.gov.my by Digicert Sdn have 1024 or 2048-bit moduli.
More interesting is fact that Digicert Sdn issued two 512-bit-key certs
for their own sites.
(certs here:
http://constructibleuniverse.net/digicert_sdn/digicert_sdn.tgz )
Ondrej
More information about the Observatory
mailing list