Can I Apply Policy Based off of a SSL Certificate's Signature Hashing Algorithm?