Now we have ACME, why not move to 3-day certs issued daily and avoid the need
for revocation entirely?
For your use case – perhaps. For my – no way.
On Fri, Sep 16, 2022 at 11:43 AM Salz, Rich
wrote:
I think this is of general interest, so I’m posting here rather than poking
On Sat, Oct 01, 2022 at 09:33:30PM -0400, Phillip Hallam-Baker wrote:
> Now we have ACME, why not move to 3 day certs issued daily and avoid the
> need for revocation entirely?
This could put rather a strain on certificate transparency. 30x times
the renewal cadence. Not that I personally
Now we have ACME, why not move to 3 day certs issued daily and avoid the
need for revocation entirely?
On Fri, Sep 16, 2022 at 11:43 AM Salz, Rich wrote:
> I think this is of general interest, so I’m posting here rather than
> poking friends I know.
>
>
>
> Browsers are phasing out doing OCSP
