On Sat, Apr 9, 2011 at 12:23 PM, Eddy Nigg <[email protected]> wrote: > On 04/09/2011 09:36 PM, From Adam Barth: >> There's no dependencies on the CAs, as far as I understand. Can you >> explain what you think the CAs will need to adhere to? > > Probably we aren't talking about the same - I was referring to "CA locking > functionality in HSTS or via CAA". And you?
Yes. Certificate (or CA) pinning in HSTS is an agreement between a web site and a browser. Certificate authorities aren't really involved. In particular, CAs won't need to adhere to anything. Adam _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
