Bye bye SHA-1

I already wrote about the SHA-1 vulnerabilities, but now it seems the next step to its demise has been done:

Arjen Lenstra and Xiaoyun Wang and Benne de Weger: “We announce the construction of a pair of valid X.509 certificates with identical signatures”.

Kris asks: “What about qualified digital signatures according to the german (EU) signature law *now*?”