1.0 is partly marketing and partly about some kind of commitment to a stable API.
As far as marketing goes, I've debated releasing 1.0, 2.0, 3.0, etc. instead of 0.6, 0.7, 0.8, etc. but it doesn't matter enough for me to bother with.
As far as the API stability goes, I know there will be more breaking changes (e.g. the AEAD API) this summer (I hope) but I've not considered trying to finalize any part of the API. Especially there are some parts of the API that would change if/when things like
const fn and statics in constant position (e.g.
x: [u8 ; ring::digest::SHA256::output_len];) were/are added to the language.
Regarding some things that are in the API guidelines, like the capitalization requirements for
Sha256, I'd like to see some evidence showing that those things actually have a significant positive difference vs. being over- or wrongly- specified before I make changes like that.