On Thu, Apr 16, 2015 at 5:16 AM, <david.a.p.ll...@gmail.com> wrote: > - You don't want to hear about non-centralized security models. DANE > provides me with control over certificate pinning for people visiting my > websites. > [...] If you don't like DANE, explain why, and propose something else > that is non-centralized and not under Mozilla's control. >
For certificate pinning Firefox and Chrome support the Public Key Pinning Extension for HTTP (HPKP ), which is non-centralized, not under Mozilla's control, and was recently ratified as a formal IETF internet standard https://tools.ietf.org/html/rfc7469 - Dan Veditz _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform