On Mon, 14 Apr 2025 16:10:47 -0700 (PDT) Arabella Barks <[email protected]> wrote:
> The key issue is that the alternative path AIA doesn't function on > Firefox. Please attempt to remove the AAA Certificate Services from > your Firefox browser(to simulate what Ben and Mozilla's plan) and > then refresh the page at https://www.relialabtest.com. > Firefox will alert this website as insecure. I'm not able to reproduce this with either Firefox 137.0.1 or Firefox 128.9.0esr. Although Firefox doesn't implement AIA, it does have Intermediate Preloading[1], which enables Firefox to build an alternative chain to another trust anchor. Note it seems to take a brand new Firefox profile a few minutes to download the Intermediate Preloading data, during which time you do get a certificate error. Could that potentially explain the error you got? Regards, Andrew [1] https://blog.mozilla.org/security/2020/11/13/preloading-intermediate-ca-certificates-into-firefox/ -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/20250414195804.a86b3ea2683c65567852b32c%40andrewayer.name.
