Matt Palmer <[email protected]> writes: >Relying parties should be checking keys against the dataset maintained by >pwnedkeys.com, which has a great many keys, both test and otherwise, >including the keys contained in RFC9500 (included since ~December 2023).
Nice! Any chance of publishing either the SPKIs or the SPKI hashes? There are lots of things around that can't make arbitrary Internet requests every time they see a new key. Peter. -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/ME0P300MB07133E93E731E59AA41BD49FEE422%40ME0P300MB0713.AUSP300.PROD.OUTLOOK.COM.
