Can I submit a 1028 bit or 2048 bit CSR key

For the purposes of increased security, the requirements established by the Certificate Authority Browser Forum for Extended Validation Certificates now state that a minimum of 2048-bit CSR keys must be utilized for certificates that expire after December 31st, 2010.

Reflective of this, Webnames.ca will require all CSR key submissions for certificates that will have a future renewal date of after December 31st, 2010 to utilize 2048 bits. The vast majority of fully-patched server platforms will be able to generate 2048-bit CSR keys without issue.

We encourage all administrators responsible for existing SSL Certificates to ensure that their server platforms are patched and/or upgraded as necessary well in advance of their SSL Certificate renewal date.

Please see SP 800-57 at http://csrc.nist.gov/publications/PubsSPs.html for additional background regarding this change.