@sleevi_ sorry if this is a dumb Q, but re the Congress' CA inquiry (http://energycommerce.house.gov/sites/republicans.energycommerce.house.gov/files/114/Letters/20150609Apple.pdf …)
Is Thomas still correct? http://security.stackexchange.com/a/31382
@sleevi_ @kennwhite Firefox does enforce the name constraints in the root cert, if there are any. It would be dumb not to.
-
-
@BRIAN_____@sleevi_@kennwhite As does Windows crypto API—which covers not only IE but any app using platform for X509 validation -
@randomoracle@BRIAN_____@kennwhite Those constraints were expressed not via the cert but via the CertGetCTL...Prop & CertGetCert...Prop
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.