The sovereign keys proposal, is to ensure that a website can only have
one key at at time - so that the bad guys cannot get a another
certificate for the same website from some highly cooperative or highly
incompetent certificate authority.
The proposed system seems to me overly complex and no
On 2011-11-26 05:41, =JeffH wrote:
Of possible interest...
Subject: [SSL Observatory] Sovereign Keys: an EFF proposal for more secure
TLS authentication
From: Peter Eckersley
Date: Fri, 18 Nov 2011 14:31:42 -0800
To: observat...@eff.org
For quite a while at EFF, we've been pondering different
Of possible interest...
Subject: [SSL Observatory] Sovereign Keys: an EFF proposal for more secure
TLS authentication
From: Peter Eckersley
Date: Fri, 18 Nov 2011 14:31:42 -0800
To: observat...@eff.org
For quite a while at EFF, we've been pondering different possible solutions to
the s