On Thu, Mar 7, 2019 at 11:29 AM James Burton <j...@0.me.uk> wrote: > I'm talking about someone from a restricted country using a undocumented > domain name to obtain a Let's Encrypt certificate and there is nothing that > can be done about it. We can't predict the future. >
So your assertion, then, is that when a domain is outed as owned by an SDN listed party, that the SDN listed party should just acquire a new domain name? Giving up their one identifier that there's broad consensus on having continuing relevancy in the WebPKI? _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy