@taoeffect @ln4711 then the target domain can detect it and prove misissuance
-
-
Replying to @taoeffect
@taoeffect@ln4711 so to misissue certs under CT, you just need to burn a CA? ;)1 reply 0 retweets 0 likes -
Replying to @taoeffect
@taoeffect@ln4711 a CA has to provide undeniable proof they misissued a cert for it to be trusted…1 reply 0 retweets 0 likes -
Replying to @bascule
Greg Slepak @taoeffect@mstdn.io Retweeted Greg Slepak @taoeffect@mstdn.io
@bascule@ln4711 At this point, we are just emphatically agreeing on the best case scenario mentioned in:https://twitter.com/taoeffect/status/573199559725219840 …Greg Slepak @taoeffect@mstdn.io added,
1 reply 0 retweets 0 likes -
Replying to @taoeffect
@taoeffect@ln4711 it solves fly-by-night misissuance. If misissuance is detected, a site can warn its users2 replies 0 retweets 0 likes -
Replying to @bascule1 reply 0 retweets 0 likes
-
Replying to @taoeffect
@taoeffect TBD? Security UX is hard and I don’t have simple answers. Maybe ask the Googlers1 reply 0 retweets 0 likes
@taoeffect I’m guessing @__apf__ has some ideas…
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.