Ryan Sleevi wrote:
Given that sites in consideration already have multiple existing ways to
mitigate these threats (among them, Certificate Transparency, Public Key
Pinning, and CAA),
Any clients which already make use of CAA RRs in DNS?
Or did you mean something else with the acronym CAA?
On Mon, Mar 9, 2015 at 11:38 AM, Michael Ströder mich...@stroeder.com
wrote:
Ryan Sleevi wrote:
Given that sites in consideration already have multiple existing ways to
mitigate these threats (among them, Certificate Transparency, Public Key
Pinning, and CAA),
Any clients which already
On Mon, March 9, 2015 8:38 am, Michael Ströder wrote:
Any clients which already make use of CAA RRs in DNS?
Or did you mean something else with the acronym CAA?
Ciao, Michael.
CAA (RFC 6844) is not for clients. It's for CAs, as another way of
restricting CAs authorized to issue for a
3 matches
Mail list logo
