Search results
  1. CRLs are still used by the Web PKI. It appears some CAs don't think they need to keep them online...

  2. Again proving live OCSP in the is a nightmare (Upstream OCSP cache is stale. Seems OK elsewhere)

  3. 63,082,038 valid certs known to ; 33,619,372 active certs. Follows that 53% of certs in today are from LE.

  4. 12 Oct 2019

    The proper way to read the BRs is to interpret them with a full understanding of the history and intent of each requirement. Also, the proper way to read the BRs is to interpret them exactly as written without any regard for the intent and history of each requirement.

  5. Math updated: 90.4% of Registered Domains (eTLD+1) using are new to the

  6. Can one shrink the 's certificate state to be as small as a photo? Mozilla Security Engineering is publishing a series of blog posts about , a technology to compress and push revocations to users, now in

  7. 12 Jul 2018

    I had a blast on vacation with this wonderful book written by and published by . I'm currently only in the half but already cannot recommend it enough. It's a MUST-READ for anyone interested in or .

  8. Mozilla has decided how to respond to WoSign and StartCom miss-issuance -

  9. Do you find cryptography and PKI interesting? Do you want to help secure and operate Google's publicly trusted CAs? Are you in Pittsburgh or New York? DM me.

  10. We're about to start an experiment with the new IETF draft for Delegated Credentials in in together with , giving another path to short-lived certs on the

    Show this thread
  11. Looks like there is a new root CA in the Microsoft Root store, based in South Africa, TrustFactory -

  12. Some things just never change #2004

  13. 25 Nov 2019

    Domain validation support will be integrated into CT logs and CAs will no longer be needed for . CT logs already serve as root of trust anyway.

  14. "I believe that the issues I have documented demonstrate a basic inability to operate effective issuance controls. " -

  15. Clearlake Capital Group and TA Associates to Make a Strategic Growth Investment in -

    Show this thread
  16. 2y from submission to recommended approval, next step final approval and distribution.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.