On 04/09/14 19:32, fhw...@gmail.com wrote: > Could you (or anyone) elaborate a bit on the use cases where short > lived certs are desirable?
See other messages in this thread - it saves a significant amount of setup time not to have to wait for a response from the OCSP server. > I'm also wondering what the plan is for handling an expired short > term cert. Will the user be given a choice of allowing an exception > or does it get special handling? What if I say it's treated the same as any other expired cert? Gerv _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
