Twitter | Pretraživanje | |
Pretraživanje Osvježi
J.C., keeper of MiniSquish 🦊 18. kol 2017.
CRLs are still used by the Web PKI. It appears some CAs don't think they need to keep them online...
Reply Retweet Označi sa "sviđa mi se"
Corey Bonnell 12. lis
The proper way to read the BRs is to interpret them with a full understanding of the history and intent of each requirement. Also, the proper way to read the BRs is to interpret them exactly as written without any regard for the intent and history of each requirement.
Reply Retweet Označi sa "sviđa mi se"
J.C., keeper of MiniSquish 🦊 15. kol 2016.
Again proving live OCSP in the is a nightmare (Upstream OCSP cache is stale. Seems OK elsewhere)
Reply Retweet Označi sa "sviđa mi se"
J.C., keeper of MiniSquish 🦊 12. srp 2017.
63,082,038 valid certs known to ; 33,619,372 active certs. Follows that 53% of certs in today are from LE.
Reply Retweet Označi sa "sviđa mi se"
Jaroslav Imrich 12. srp 2018.
I had a blast on vacation with this wonderful book written by and published by . I'm currently only in the half but already cannot recommend it enough. It's a MUST-READ for anyone interested in or .
Reply Retweet Označi sa "sviđa mi se"
J.C., keeper of MiniSquish 🦊 5. tra 2016.
Math updated: 90.4% of Registered Domains (eTLD+1) using are new to the
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 26. ruj 2016.
Mozilla has decided how to respond to WoSign and StartCom miss-issuance -
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 20. ruj 2018.
Do you find cryptography and PKI interesting? Do you want to help secure and operate Google's publicly trusted CAs? Are you in Pittsburgh or New York? DM me.
Reply Retweet Označi sa "sviđa mi se"
J.C., keeper of MiniSquish 🦊 9. sij
Can one shrink the 's certificate state to be as small as a photo? Mozilla Security Engineering is publishing a series of blog posts about , a technology to compress and push revocations to users, now in
Reply Retweet Označi sa "sviđa mi se"
J.C., keeper of MiniSquish 🦊 1. stu
We're about to start an experiment with the new IETF draft for Delegated Credentials in in together with , giving another path to short-lived certs on the
Reply Retweet Označi sa "sviđa mi se"
J.C., keeper of MiniSquish 🦊 8. kol
Think that crypto means , , ? So do we. Join our team!
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 2. lis 2018.
Some things just never change #2004
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 3. velj 2017.
IAB encourages deployment of OCSP stapling -
Reply Retweet Označi sa "sviđa mi se"
Jaroslav Imrich 25. stu
Domain validation support will be integrated into CT logs and CAs will no longer be needed for . CT logs already serve as root of trust anyway.
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 6. kol
Looks like there is a new root CA in the Microsoft Root store, based in South Africa, TrustFactory -
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 15. ruj 2018.
2y from submission to recommended approval, next step final approval and distribution.
Reply Retweet Označi sa "sviđa mi se"
Ryan Hurst 8. svi
"I believe that the issues I have documented demonstrate a basic inability to operate effective issuance controls. " -
Reply Retweet Označi sa "sviđa mi se"
Jeff Hodges / =JeffH 20. stu 2017.
Ensuring Web PKI Integrity (EWPI) meetup Summary Report is available:
Reply Retweet Označi sa "sviđa mi se"
ftobloke 24. velj 2017.
Again, the condescending, bullshit, "holier than thou" approach continues... no wonder the is in a mess
Reply Retweet Označi sa "sviđa mi se"
CA Security Council 5. ruj 2017.
Blog post: : Real or Exaggerated Threat to the ?
Reply Retweet Označi sa "sviđa mi se"