On Tue, Sep 13, 2011 at 6:41 AM, James Nicoll <[email protected]> wrote: > I was under the impression that this wasn't a good idea, as periodic > replacement of the keys was done incase of an undetected compromise?
One typically pins, at least, to a CA which allows a site to rotate its keys without issue so long as they use the same CA. Cheers AGL _______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
