On Fri, Nov 01, 2024 at 06:47:54PM -0500, Jaime Hablutzel wrote: > > On 1 Nov 2024, at 7:28 AM, Roman Fischer <[email protected]> > > wrote: > > > > Key-generation isn't that cheap and the larger the keys get, the > > more expensive it gets. Also, the CA's would probably need to feed > > and query one central database of "used" keys to prevent the re-use. > > Private Key Compromise Transparency (PKCT), as mentioned in > https://mailarchive.ietf.org/arch/msg/trans/tB8YhAapz_6RN9MJVMKlRCR9HK0/, > might help to make this information available to all CAs.
What benefit does a transparency log bring to this use case, over, say, a git repo full of keys in files? - Matt -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/f89d5a96-d3f4-465f-a646-786ceb99e611%40mtasv.net.
