@raysato ¤µ¤ó¤ÎTL¤ò¸«¤Æ¤¤¤¿¤éTwitter¼Ò¤Î¿Í¤Î¥Ö¥í¥°¤ò¾Ò²ð¤·¤Æ¤¤¤Æ¡¢°Ê²¼¤Î¤è¤¦¤Ê¥¨¥ó¥È¥ê¤¬¤¢¤ê¤Þ¤·¤¿¡£
REST API SSL certificate updatesTwitter¤ÏAPIÍѤξÚÌÀ½ñ¤òÀÚ¤êÂؤ¨¤ë¤½¤¦¤Ç¤¹¡£
https://dev.twitter.com/blog/rest-api-ssl-certificate-updates
¤Þ¤¸¤«¡¼¡£api.twitter.com¤Î¾ÚÌÀ½ñ¤ò¸«¤Æ¤ß¤ë¤È¡¢
³Î¤«¤Ë͸ú´ü¸Â¤¬2013ǯ12·î31Æü¤Þ¤Ç¤Ë¤Ê¤Ã¤È¤ë¤Ê¡¼¡£
¤Ç¤âapi.twitter.com¤Î¾ÚÌÀ½ñ¤Ï¤Á¤ã¤ó¤ÈRSA 2048bit ¤À¤«¤é¤¤¤¤¤¸¤ã¤ó¤È»×¤Ã¤Æ
¸«¤Æ¤ß¤¿¤é¡¢¤Ê¤ë¤Û¤É¥ë¡¼¥ÈCA RSA 1024bit X.509v1¾ÚÌÀ½ñ¤Ê¤ó¤À¤Í¡£¤½¤ê¤ã¤À¤á¤À¡£
ǧ¾Ú¥µ¡¼¥Ó¥¹¤Î¶¦Ḁ̈롼¥ë¤òºî¤Ã¤Æ¤¤¤ëCA Browser Forum¤Î¥¬¥¤¥É
¡ÖBaseline Requirements for the Issuance and Management of
Publicly-Trusted Certificates, v.1.1.5¡×¤È¤¤¤¦¤Î¤¬
½Ð¤Æ¤¤¤Æ
2013-12-31¤È¤¢¤ê¤Þ¤¹¡£RSA 2048bit̤Ëþ¤ÎCA¤Ï»È¤¨¤Ê¤¯¤Ê¤Ã¤Á¤ã¤¦¤ó¤À¤Ê¤¡¤È¡£
CAs SHALL confirm that the RSA Public Key is at least 2048 bits or that one of the following ECC curves is used: P-256, P-384, or P-521. A Root CA Certificate issued prior to 31 Dec. 2010 with an RSA key size less than 2048 bits MAY still serve as a trust anchor.
¤ä¤Ù¤ä¤Ù¡¢ÌÀÆü¤Î»ñÎÁ¤òºî¤é¤Ê¤¤¤È¡£