On 9/17/13 1:17 PM, joel jaeggli wrote:
On 9/16/13 5:23 PM, Tom Ritter wrote:
On 16 September 2013 17:10, Bruce Morton <[email protected]> wrote:
Sounds reasonable. One question is that since it is not widely used, does it
meet the 0.1 percent of connections criteria? I don’t know how we measure
that.
Chrome's between 16-46% of the market[0] and pins Google and
Twitter[1]. Between Google and Twitter, I'd say it probably hits
0.1%...
is this behavior consistent with what mozilla was doing/did?
It is consistent with Mozilla's current plan
Camilo
https://bugzilla.mozilla.org/show_bug.cgi?id=744204
https://wiki.mozilla.org/Security/Features/CA_pinning_functionality
-tom
[0] https://en.wikipedia.org/wiki/Usage_share_of_web_browsers#Summary_table
[1]
http://src.chromium.org/viewvc/chrome/trunk/src/net/http/transport_security_state_static.json
(And Tor, Cryptocat, and Tor2web). (It also preloads HSTS on ~200
domains.)
_______________________________________________
wpkops mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/wpkops
_______________________________________________
wpkops mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/wpkops
_______________________________________________
wpkops mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/wpkops
