Zack Weinberg wrote:
Counterpoint: If the attacker is (or colludes with) a rogue CA, they are in a position to make the *entire contents* of the certificate be whatever they want. They can forge EV status
Not really. EV status depends on the root certificate. If we'd lock on something else, we'd made sure that it's based on the CA's values, rather than the one of the issued certificates. The key that sign the CA certificate ought to be off-line and much harder to compromise.
_______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
