El viernes, 23 de marzo de 2007 06:04:58 UTC-3, Melelina escribió:
> Why is the VeriSign Class 3 Secure Server CA which can be downloaded here:
> http://SVRSecure-aia.verisign.com/SVRSecure2005-aia.cer not in the Fx
> certificate store? Should this not have been added in the latest update of
> Fx
Mikko Rantalainen wrote:
> I'd much rather see world where CA signs whatever they want and trust is
> handled separately, hopefully using some kind of web-of-trust algorithm.
Cert pinning?
Ciao, Michael.
___
dev-security mailing list
dev-security@lis
Mikko Rantalainen wrote:
> On Friday, 16 August 2013 12:01:51 UTC+3, Gervase Markham wrote:
>> 2. Limited cert lifetimes mean that if an algorithm starts to look dodgy
>> (e.g. as MD5 did) we can move the industry to new algorithms without
>> having to worry about 20-year end-entity certs. This is
