On 14/04/15 08:47, david.a.p.ll...@gmail.com wrote: >> realistic idea. Meanwhile, HTTPS exists, is widely deployed, works, >> and is the focus of this thread. > > http://www.zdnet.com/article/google-banishes-chinas-main-digital-certificate-authority-cnnic/ > > > Sure it works :)
Yep. That's the system working. CA does something they shouldn't, we find out, CA is no longer trusted (perhaps for a time). Or do you have an alternative system design where no-one ever makes a mistake and all the actors are trustworthy? Gerv _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform