30 幎 2020 æ XNUMX æ¥åææ¥ããã³ã㌠Sectigo (æ§ Comodo) ã®äžè¬ç㪠SSL / TLS 蚌ææžã§ãããã«ã¯æããã§ã¯ãªãåé¡ãçºçããŸããã 蚌ææžèªäœã¯åŒãç¶ãå®å šãªç¶æ ãä¿ã£ãŠããŸãããããããã®èšŒææžãæäŸããããã§ãŒã³å ã®äžé CA 蚌ææžã® XNUMX ã€ãç ŽæããŸããã ãã®ç¶æ³ã¯ããã»ã©èŽåœçã§ãããšã¯èšããŸããããäžå¿«ã§ããçŸåšã®ããŒãžã§ã³ã®ãã©ãŠã¶ã§ã¯äœãæ°ä»ãããŸããã§ããããã»ãšãã©ã®èªååãšå€ããã©ãŠã¶/OS ã¯ãã®ãããªäºæ ã«å¯Ÿå¿ããæºåãã§ããŠããŸããã§ããã
ããã«ãäŸå€ã§ã¯ãªããããããã®æè²ããã°ã©ã /æ»åŸåæãæžãããçç±ã§ãã
TL; DR æåŸã®æåŸã«è§£æ±ºçã
PKIãSSL / TLSãhttps ãªã©ã«é¢ããåºæ¬çãªçè«ã¯çç¥ããŸãã ãã¡ã€ã³ ã»ãã¥ãªãã£èšŒææžã«ããèªèšŒã®ä»çµã¿ã¯ããã©ãŠã¶ãŸãã¯ãªãã¬ãŒãã£ã³ã° ã·ã¹ãã ã«ãã£ãŠä¿¡é ŒãããŠãã蚌ææžã® XNUMX ã€ãžã®å€æ°ã®èšŒææžã®ãã§ãŒã³ãæ§ç¯ãããããããã©ã¹ã ã¹ãã¢ã«ä¿åãããŸãã ãã®ãªã¹ãã¯ããªãã¬ãŒãã£ã³ã° ã·ã¹ãã ãã³ãŒã ã©ã³ã¿ã€ã ãšã³ã·ã¹ãã ããŸãã¯ãã©ãŠã¶ãŒãšãšãã«é
åžãããŸãã ãã©ã¹ã ã¹ãã¢å
ã®èšŒææžãå«ãããã¹ãŠã®èšŒææžã«ã¯æå¹æéãããããã®æéãéãããšä¿¡é Œã§ããªããšã¿ãªãããŸãã éåœã®æ¥ã®åãä¿¡é Œã®é£éã¯ã©ã®ãããªãã®ã§ãããïŒ Web ãŠãŒãã£ãªãã£ãããã解決ããã®ã«åœ¹ç«ã¡ãŸã
ãããã£ãŠãæã人æ°ã®ãããåçšã蚌ææžã® 5 ã€ã¯ Sectigo Positive SSL (以åã® Comodo Positive SSLããã®ååã®èšŒææžã¯ãŸã 䜿çšãããŠããŸã)ããããã DV 蚌ææžã§ãã DV ã¯æãåå§çãªã¬ãã«ã®èªèšŒã§ããããã®ãããªèšŒææžã®çºè¡è ã«ãããã¡ã€ã³ç®¡çãžã®ã¢ã¯ã»ã¹ã®æ€èšŒãæå³ããŸãã å®éãDV ã¯ããã¡ã€ã³æ€èšŒãã®ç¥ã§ãã åè: OV (çµç¹æ€èšŒ) ãš EV (æ¡åŒµæ€èšŒ) ããããLet's Encrypt ã®ç¡æ蚌ææžã DV ã§ãã äœããã®çç±ã§ ACME ã¡ã«ããºã ã«æºè¶³ã§ããªã人ã«ãšã£ãŠã¯ãPositive SSL 補åãäŸ¡æ Œãšæ©èœã®ç¹ã§æãé©ããŠããŸã (åäžãã¡ã€ã³èšŒææžã®è²»çšã¯å¹ŽéçŽ 7 ïœ 2 ãã«ã§ã蚌ææžã®åèšæå¹æéã¯æé·ã§ã) 3æ³XNUMXã¶æãŸã§ïŒã
æè¿ãŸã§ãSectigo DV Generic Certificate (RSA) ã«ã¯ã次ã®äžé CA ãã§ãŒã³ãä»å±ããŠããŸããã
Certificate #1:
Data:
Version: 3 (0x2)
Serial Number:
7d:5b:51:26:b4:76:ba:11:db:74:16:0b:bc:53:0d:a7
Signature Algorithm: sha384WithRSAEncryption
Issuer: C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
Validity
Not Before: Nov 2 00:00:00 2018 GMT
Not After : Dec 31 23:59:59 2030 GMT
Subject: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Certificate #2:
Data:
Version: 3 (0x2)
Serial Number:
13:ea:28:70:5b:f4:ec:ed:0c:36:63:09:80:61:43:36
Signature Algorithm: sha384WithRSAEncryption
Issuer: C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, CN=AddTrust External CA Root
Validity
Not Before: May 30 10:48:38 2000 GMT
Not After : May 30 10:48:38 2020 GMT
Subject: C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust RSA Certification Authority
ããæç¹ã§èªå·±çœ²åã«ãŒã蚌ææžããã§ãŒã³ã«å«ããããšã¯ãããŒéåãšã¿ãªããããããAddTrust AB ããã®èªå·±çœ²åã®ã30 çªç®ã®èšŒææžãã¯ååšããŸããã AddTrust ã® UserTrust ã«ãã£ãŠçºè¡ãããäžé CA ã®æå¹æé㯠2020 幎 30 æ 2020 æ¥ã§ããããšã«æ³šæããŠãã ããã ãã® CA ã®å»æ¢æé ãèšç»ãããŠãããããããã¯ç°¡åã§ã¯ãããŸããã XNUMX 幎 XNUMX æ XNUMX æ¥ãŸã§ã«ãããšããã§ã«ä¿¡é ŒãããŠããªã蚌ææžãå«ãŸããŠããå Žåã¯ã代æ¿ãã¹ãæ§ç¯ãããããã誰ãæ°ã¥ããŸããã ããããèšç»ã¯çŸå®ãã€ãŸããã¬ã¬ã·ãŒ ã·ã¹ãã ããšããé·ãçšèªã«è¡çªããŸããã 確ãã«ããã©ãŠã¶ã®çŸåšã®ããŒãžã§ã³ã®ææè
ã¯äœãæ°ã¥ããŸããã§ããããå€ãã®ããã°ã©ãã³ã°èšèªã®curlããã³ssl / tlsã©ã€ãã©ãªãšã³ãŒãå®è¡ç°å¢ã«åºã¥ããŠæ§ç¯ãããèªååã®å±±ãå£ããŸããã å€ãã®è£œåã¯ãOS ã«çµã¿èŸŒãŸãããã§ãŒã³æ§ç¯ããŒã«ã«ãã£ãŠå°ãããã®ã§ã¯ãªãããã©ã¹ã ã¹ãã¢ããæã¡éã¶ãããšãç解ããå¿
èŠããããŸãã ãããŠããããã«ã¯åžžã«åœŒããèŠãããã®ãå«ãŸããŠãããšã¯éããŸããã
å³ 1 ããã倧å€æ°ã®äººã«ãšã£ãŠã¯ãã¹ãŠãæ£åžžã«èŠããŠãã誰ãã«ãšã£ãŠã¯äœããå£ããŠãã©ãã£ãã¯ãèããæžå°ã (å·Šã®èµ€ãç·)ããã®åŸãããŒèšŒææžã® XNUMX ã€ã眮ãæãããããšãã«ãã©ãã£ãã¯ãå¢å ãã (å³ã®ç·) ããšãæããã§ãã ä»ã®èšŒææžãå€æŽããããšãéäžã§ããŒã¹ããçºçããããã«äŸåãããã®ããããŸããã 倧å€æ°ã®å ŽåãèŠèŠçã«ãã¹ãŠãå€ããå°ãªããå®æçã«åäœãç¶ãããã (Habrastorage ã«åçãããŒãã§ããªããªã©ã®å¥åŠãªäžå ·åãé€ããŠ)ãHabré äžã®åŸæ¥ã®ã¯ã©ã€ã¢ã³ããšãããã®æ°ã«ã€ããŠéæ¥çãªçµè«ãäžãããšãã§ããŸãã
å³ 1. ããã¬ã®ããã©ãã£ãã¯ãã®ã°ã©ãã
å³ 2 ã¯ããã§ãŒã³å ã«ãå£ããã蚌ææžãããå Žåã§ããçŸåšã®ããŒãžã§ã³ã®ãã©ãŠã¶ã§ãŠãŒã¶ãŒã®ãã©ãŠã¶ã®ä¿¡é Œããã CA 蚌ææžãžã®ã代æ¿ããã§ãŒã³ãã©ã®ããã«æ§ç¯ããããã瀺ããŠããŸãã ã»ã¯ãã£ãŽèªèº«ãä¿¡ããŠããããã«ããããããäœãããªãçç±ã ã
å³ 2. ææ°ã®ãã©ãŠã¶ ããŒãžã§ã³ã®ä¿¡é Œã§ãã蚌ææžãžã®ãã§ãŒã³ã
ããããå³ 3 ã§ã¯ãäœãåé¡ãçºçããã¬ã¬ã·ãŒ ã·ã¹ãã ã䜿çšãããŠããå Žåã«ãå®éã«ãã¹ãŠãã©ã®ããã«èŠãããã瀺ããŠããŸãã ãã®å ŽåãHTTPS æ¥ç¶ã¯ç¢ºç«ããããã蚌ææžã®æ€èšŒã«å€±æããŸããããªã©ã®ãšã©ãŒã衚瀺ãããŸãã
å³ 3. ã«ãŒã蚌ææžãšããã«ãã£ãŠçœ²åãããäžé蚌ææžããè ã£ãŠãããããããã§ãŒã³ã¯ç¡å¹ã«ãªããŸããã
å³ 4 ã§ã¯ãã¬ã¬ã·ãŒ ã·ã¹ãã ã«å¯Ÿããããœãªã¥ãŒã·ã§ã³ãããã§ã«ç€ºãããŠããŸããå¥ã®äžé蚌ææžãã€ãŸãå¥ã® CA ããã®ãçžäºçœ²åãããããéåžžã¯ã¬ã¬ã·ãŒ ã·ã¹ãã ã«ãã¬ã€ã³ã¹ããŒã«ãããŠããŸãã å¿ èŠãªã®ã¯ããã®èšŒææž (è¿œå ããŠã³ããŒããšããŠããŒã¯ãããŠãã) ãèŠã€ããŠããè ã£ãã蚌ææžãšçœ®ãæããããšã§ãã
å³ 4. ã¬ã¬ã·ãŒ ã·ã¹ãã ã®ä»£æ¿ãã§ãŒã³ã
ãšããã§ããã®åé¡ã¯ãSectigo ã®é床ã®å²æ
¢ããªã©ã®çç±ã§ãåºãç¥ãããããšããããçš®ã®å
¬çè°è«ãè¡ãããŸããã§ããã ããšãã°ã次ã®ãããªèšŒææžãããã€ããŒã®æèŠããããŸãã
以åã¯åœŒã㯠[ã»ã¯ãã£ãŽ] äœãåé¡ããªãããšãçããã«ä¿èšŒããŸãã ãã ããå®éã«ã¯ãäžéšã®ã¬ã¬ã·ãŒ ãµãŒããŒ/ããã€ã¹ã圱é¿ãåããŸãã
ããã¯ãšãã§ããªãç¶æ³ã ã ç§ãã¡ã¯æå¹æéãåãã AddTrust RSA/ECC ã«ã€ã㊠XNUMX 幎以å ã«äœåºŠã泚æãåããŸãããããã®ãã³ã« Sectigo ã¯åé¡ã¯ãªããšä¿èšŒããŠãããŸããã
å人çã«èããŠã¿ã
ã»ã¯ããŽ
ããã¹ãããš
ææ°ã®ã¯ã©ã€ã¢ã³ã ã·ã¹ãã ãŸãã¯ãµãŒã㌠ã·ã¹ãã ã«ãµãŒãã¹ãæäŸãã蚌ææžãå«ãã»ãšãã©ã®äœ¿çšäŸã§ã¯ãAddTrust ã«ãŒãã«ã¯ãã¹ãã§ãŒã³ããã蚌ææžãçºè¡ãããã©ããã«é¢ä¿ãªããã¢ã¯ã·ã§ã³ã¯å¿ èŠãããŸããã4æ30ã2020ã®ããã«: éåžžã«å€ãã·ã¹ãã ã«äŸåããããžãã¹ ããã»ã¹ã®ããã«ãSectigo ã¯çžäºçœ²åçšã®æ°ããã¬ã¬ã·ãŒ ã«ãŒãã§ãããAAA Certificate Servicesãã«ãŒãã (蚌ææžãã³ãã«ã®ããã©ã«ãã§) å©çšã§ããããã«ããŸããã ãã ããéåžžã«å€ãã¬ã¬ã·ãŒ ã·ã¹ãã ã«äŸåããããã»ã¹ã«ã€ããŠã¯çŽ°å¿ã®æ³šæãæã£ãŠãã ããã Sectigo ã® COMODO ã«ãŒããªã©ã®æ°ããã«ãŒãããµããŒãããããã«å¿ èŠãªã¢ããããŒããåãåã£ãŠããªãã·ã¹ãã ã¯ãå¿ ç¶çã«ä»ã®éèŠãªã»ãã¥ãªã㣠ã¢ããããŒããæ¬ èœããŠãããããå®å šã§ã¯ãªããšèããã¹ãã§ãã ããã§ã AAA 蚌ææžãµãŒãã¹ã®ã«ãŒãã«çžäºçœ²åãããå Žåã¯ãSectigo ã«çŽæ¥ãåãåãããã ããã
ãã¡ãããç§ã¯ãéåžžã«å€ããè«æã倧奜ãã§ãã ããšãã°ãææ°ã®ã¢ããããŒãã 18.04 ãæãçµã£ãŠããªã Ubuntu Linux XNUMX LTS (çŸæç¹ã§ã®ããŒã¹ OS) ã®ã³ã³ãœãŒã«ã§ã®curlã¯ãéåžžã«å€ããšã¯èšããããã§ãããæ©èœããŸããã
ã»ãšãã©ã®èšŒææžé
åžäŒç€Ÿã¯ã30 æ XNUMX æ¥ã®ååŸé
ãã«æ±ºå®ææžãçºè¡šããŸããã ããšãã°ãæè¡çšèªã§ã¯éåžžã«é©ããŠããŸãã
å³ 5. åé¡ãè¿ éã«è§£æ±ºããããã® XNUMX ã€ã®ã¹ãããã
ãã
ãœãªã¥ãŒã·ã§ã³
ããã§ããœãªã¥ãŒã·ã§ã³ãè€è£œãã䟡å€ããããŸãã 以äžã¯èšŒææžã® XNUMX ã€ã®ãã§ãŒã³ ã»ããã§ãã DV Sectigo (Comodo ã§ã¯ãããŸãã!)ãXNUMX ã€ã¯ããç¥ããã RSA 蚌ææžçšããã XNUMX ã€ã¯ããŸã銎æã¿ã®ãªã ECC (ECDSA) 蚌ææžçšã§ã (ç§ãã¡ã¯é·ãé XNUMX ã€ã®ãã§ãŒã³ã䜿çšããŠããŸãã)ã ECC ã®å Žåãã»ãšãã©ã®ãœãªã¥ãŒã·ã§ã³ã§ã¯ãã®ãããªèšŒææžã®æ®åçãäœãããã«ãã®ååšãèæ
®ããŠããªããããããã¯ããã«å°é£ã§ããã ãã®çµæãå¿
èŠãªäžé蚌ææžãèŠã€ãããŸããã
éµã¢ã«ãŽãªãºã ã«åºã¥ã蚌ææžã®ãã§ãŒã³ RSAã ãã§ãŒã³ãšæ¯èŒãããšãäžã®èšŒææžã®ã¿ã眮ãæããããäžã®èšŒææžã¯åããŸãŸã§ããããšãããããŸãã ç§ã¯èªå®
ã§ã¯ããçãããæåãé€ããŠãbase64 ãããã¯ã®æåŸã® XNUMX æåã«ãã£ãŠããããåºå¥ããŠããŸã (ãã®å Žå) En8=
О 1+V
):
# Subject: /C=GB/ST=Greater Manchester/L=Salford/O=Sectigo Limited/CN=Sectigo RSA Domain Validation Secure Server CA
# Algo: RSA, key size: 2048
# Issuer: /C=US/ST=New Jersey/L=Jersey City/O=The USERTRUST Network/CN=USERTrust RSA Certification Authority
# Not valid before: 2018-11-02T00:00:00Z
# Not valid after: 2030-12-31T23:59:59Z
# SHA-1 Fingerprint: 33:E4:E8:08:07:20:4C:2B:61:82:A3:A1:4B:59:1A:CD:25:B5:F0:DB
# SHA-256 Fingerprint: 7F:A4:FF:68:EC:04:A9:9D:75:28:D5:08:5F:94:90:7F:4D:1D:D1:C5:38:1B:AC:DC:83:2E:D5:C9:60:21:46:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
# Subject: /C=US/ST=New Jersey/L=Jersey City/O=The USERTRUST Network/CN=USERTrust RSA Certification Authority
# Algo: RSA, key size: 4096
# Issuer: /C=GB/ST=Greater Manchester/L=Salford/O=Comodo CA Limited/CN=AAA Certificate Services
# Not valid before: 2019-03-12T00:00:00Z
# Not valid after: 2028-12-31T23:59:59Z
# SHA-1 Fingerprint: D8:9E:3B:D4:3D:5D:90:9B:47:A1:89:77:AA:9D:5C:E3:6C:EE:18:4C
# SHA-256 Fingerprint: 68:B9:C7:61:21:9A:5B:1F:01:31:78:44:74:66:5D:B6:1B:BD:B1:09:E0:0F:05:CA:9F:74:24:4E:E5:F5:F5:2B
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
éµã¢ã«ãŽãªãºã ã«åºã¥ã蚌ææžã®ãã§ãŒã³ ECCã RSA ã®ãã§ãŒã³ãšåæ§ã«ãäžäœã®èšŒææžã®ã¿ã眮ãæããããäžäœã®èšŒææžã¯å€æŽãããŸããã§ãã (ãã®å Žåã fmA==
О v/c=
):
# Subject: /C=GB/ST=Greater Manchester/L=Salford/O=Sectigo Limited/CN=Sectigo ECC Domain Validation Secure Server CA
# Algo: EC secp256r1, key size: 256
# Issuer: /C=US/ST=New Jersey/L=Jersey City/O=The USERTRUST Network/CN=USERTrust ECC Certification Authority
# Not valid before: 2018-11-02T00:00:00Z
# Not valid after: 2030-12-31T23:59:59Z
# SHA-1 Fingerprint: E8:49:90:CB:9B:F8:E3:AB:0B:CA:E8:A6:49:CB:30:FE:4D:C4:D7:67
# SHA-256 Fingerprint: 61:E9:73:75:E9:F6:DA:98:2F:F5:C1:9E:2F:94:E6:6C:4E:35:B6:83:7C:E3:B9:14:D2:24:5C:7F:5F:65:82:5F
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
# Subject: /C=US/ST=New Jersey/L=Jersey City/O=The USERTRUST Network/CN=USERTrust ECC Certification Authority
# Algo: EC secp384r1, key size: 384
# Issuer: /C=GB/ST=Greater Manchester/L=Salford/O=Comodo CA Limited/CN=AAA Certificate Services
# Not valid before: 2019-03-12T00:00:00Z
# Not valid after: 2028-12-31T23:59:59Z
# SHA-1 Fingerprint: CA:77:88:C3:2D:A1:E4:B7:86:3A:4F:B5:7D:00:B5:5D:DA:CB:C7:F9
# SHA-256 Fingerprint: A6:CF:64:DB:B4:C8:D5:FD:19:CE:48:89:60:68:DB:03:B5:33:A8:D1:33:6C:62:56:A8:7D:00:CB:B3:DE:F3:EA
-----BEGIN CERTIFICATE-----
MIID0zCCArugAwIBAgIQVmcdBOpPmUxvEIFHWdJ1lDANBgkqhkiG9w0BAQwFADB7
MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYD
VQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UE
AwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4
MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5
MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBO
ZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgRUNDIENlcnRpZmljYXRpb24gQXV0
aG9yaXR5MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEGqxUWqn5aCPnetUkb1PGWthL
q8bVttHmc3Gu3ZzWDGH926CJA7gFFOxXzu5dP+Ihs8731Ip54KODfi2X0GHE8Znc
JZFjq38wo7Rw4sehM5zzvy5cU7Ffs30yf4o043l5o4HyMIHvMB8GA1UdIwQYMBaA
FKARCiM+lvEH7OKvKe+CpX/QMKS0MB0GA1UdDgQWBBQ64QmG1M8ZwpZ2dEl23OA1
xmNjmjAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zARBgNVHSAECjAI
MAYGBFUdIAAwQwYDVR0fBDwwOjA4oDagNIYyaHR0cDovL2NybC5jb21vZG9jYS5j
b20vQUFBQ2VydGlmaWNhdGVTZXJ2aWNlcy5jcmwwNAYIKwYBBQUHAQEEKDAmMCQG
CCsGAQUFBzABhhhodHRwOi8vb2NzcC5jb21vZG9jYS5jb20wDQYJKoZIhvcNAQEM
BQADggEBABns652JLCALBIAdGN5CmXKZFjK9Dpx1WywV4ilAbe7/ctvbq5AfjJXy
ij0IckKJUAfiORVsAYfZFhr1wHUrxeZWEQff2Ji8fJ8ZOd+LygBkc7xGEJuTI42+
FsMuCIKchjN0djsoTI0DQoWz4rIjQtUfenVqGtF8qmchxDM6OW1TyaLtYiKou+JV
bJlsQ2uRl9EMC5MCHdK8aXdJ5htN978UeAOwproLtOGFfy/cQjutdAFI3tZs4RmY
CV4Ks2dH/hzg1cEo70qLRDEmBDeNiXQ2Lu+lIg+DdEmSx/cQwgwp+7e9un/jX9Wf
8qn0dNW44bOwgeThpWOjzOoEeJBuv/c=
-----END CERTIFICATE-----
ããã ãã§ãã ãæž èŽããããšãããããŸããã
åºæïŒ habr.com