Given a list of official CAs (e.g. trusted by Windows, MacOS, Linux), I'd love to see results of a poll asking what people recognize to be legit vs. rogue. (Hint: it's a *very* long list!)
Years ago, there was a browser add-on called Perspectives that would compare the HTTPS certificate you're being presented vs. a crowdsourced view of what everybody else is seeing, to warn on shenanigans. Eventually it ended up in a project called Convergence. Both are abandoned.
-
-
Yeah I remember
@moxie presenting that in 2011. Given where we are today maybe worth a revisit as additional support to users vs a replacement to CA’s? Especially with the new headers as well.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.