Luke, ----- Original Message ----- From: "lkcl luke" <[email protected]> To: "Jonas Sicking" <[email protected]> Cc: [email protected], "ptheriault" <[email protected]>, "Jim Straus" <[email protected]>, [email protected], [email protected], "Mozilla B2G mailing list" <[email protected]> Sent: Friday, March 16, 2012 1:10:00 PM Subject: Re: [b2g] OpenWebApps/B2G Security model
> actually, SSL *does* solve it, i forget the name of the technical > solution but it's used by the BBC on the HTTPS traffic for the bbc > ipplayuh. they allow *ONLY* certain PKI Certificates to be used. fwiw, it's usually called 'certificate pinning' or 'key pinning' or 'CA pinning' or something like that including 'pinning' thanks ian _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
