Hello Gerv,
given that today we don't have a single place where all of Mozilla's certificate
trust decisions can be found, introducing that would be a helpful.
I think the new format should be as complete as possible, including both trust
and distrust information, including EV and description of
I just want to drop in a couple thoughts from the perspective of Censys
with regard purely to _obtaining_ root stores.
Censys validates certificates against multiple root stores. At the end of
the day, what we want is a reliable and repeatable way to get an up-to-date
version of a root store in
David Adrian via dev-security-policy
writes:
>I'd like to see either a reliable URL to fetch that can be converted to PEM
>(i.e. what Microsoft does), or some API you can hit to the store (e.g. what
>CT does).
PEM. You keep using that word... I do not
Peter Gutmann via dev-security-policy
writes:
>You keep using that word... I do not think it means what you think it does.
"... what you think it means". Dammit.
Peter.
___
dev-security-policy mailing list
4 matches
Mail list logo