On Tue, Jan 17, 2012 at 8:49 PM, Oleg Gryb <[email protected]> wrote:
> I've just checked FF 9.0.1 and it has about 70 trusted root CA, while IE7 > - only 25, but even it's 600 in other browsers Windows Vista and later dynamically download CAs from Microsoft as needed. If you have only 25, its because you have only needed that many. Last I checked, FF and MS have 100+ that they agree upon, and many more that they don't. EFF says 650+, but that includes intermediate CAs, not just roots, but the compromise of an intermediate as happened with Diginotar can be even worse, since its harder for a user to revoke/block an intermediate without removing the whole root. -bri -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
