On 1/12/12 12:10 AM, Henri Sivonen wrote: > Is Mozilla actively working on a TLS public key checking system that > has real trust agility (not DNSsec!) and that doesn't require CAs to > work (but that can work in parallel with the CA system)?
Not "actively", no. It's too early to determine if that's a fruitful approach to build it into Firefox. We should, however, make some changes so it's easier to develop experiments like Convergence. -Dan Veditz _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
