Le lundi 27 janvier 2014 19:28:51 UTC+1, Kathleen Wilson a écrit : > Draft Design Doc posted by Ryan Sleevi regarding Chrome migrating from > > NSS to OpenSSL: > > > > https://docs.google.com/document/d/1ML11ZyyMpnAr6clIAwWrXD53pQgNR-DppMYwt9XvE6s/edit?pli=1 > > "Switching to OpenSSL, however, has the opportunity to bring significant > > performance and stability advantages to iOS, Mac, Windows, and ChromeOS > > immediately out of the gate. Switching Linux to use OpenSSL will take > > longer, due to the desire to continue to support PKCS#11-based smart > > card authentication, which will require more work. The biggest risk/cost > > to such a switch is no longer being able to help Firefox benefit from > > these efforts, nor benefiting from Firefox's efforts in these areas." > > > > Kathleen
Nice work, I am not clear on the cons for OpenSSL: Limited-to-no extension points for dealing with networking fetching (AIA, CRL, OCSP) OCSP and CRL are available ? What do you mean with this sentence. Which may be a good point for security coverage. Thanks -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto