@bascule @taoeffect why would all be required? anybody can submit certs to logs.
@taoeffect @ln4711 in the event of a misissued cert that isn't in the logs, browsers can show a scary address bar...
-
-
@taoeffect@ln4711 ...that only helps in a world where everyone is using CT though -
-
@taoeffect@ln4711 then the target domain can detect it and prove misissuance -
-
@taoeffect@ln4711 so to misissue certs under CT, you just need to burn a CA? ;) -
-
@taoeffect@ln4711 a CA has to provide undeniable proof they misissued a cert for it to be trusted… -
@bascule@ln4711 At this point, we are just emphatically agreeing on the best case scenario mentioned in:https://twitter.com/taoeffect/status/573199559725219840 … - 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.