Ka-Ping Yee wrote: > An effective revocation mechanism, temporary or permanent, for CAs > and for individual certificates, would probably help to some degree.
On Tue, 7 Nov 2006, Eddy Nigg (StartCom Ltd.) wrote: > I'm afraid, but this isn't something the browser vendor controls, only > the CA. Not feasible. But if certificate revocation is going to work, doesn't it have to be implemented by the browser? Couldn't there be a role for Mozilla to play here? -- ?!ng _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
