[SSL Observatory] on CA pinning
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Tue Sep 13 06:57:01 PDT 2011
On 09/13/2011 09:50 AM, ArkanoiD wrote:
> IIRC there was a (ietf draft? rfc? whitepaper?) on limiting CA trust domains,
> email-centric (may be even x.400-centric), but I cannot find it now!
>
> Does anyone remember what exactly it was?
To be clear, it's Certificate Pinning, not necessarily CA pinning.
It's being discussed currently on the IETF's websec list, starting here:
https://www.ietf.org/mail-archive/web/websec/current/msg00505.html
hth,
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1030 bytes
Desc: OpenPGP digital signature
URL: <http://lists.eff.org/pipermail/observatory/attachments/20110913/44f5afc5/attachment.sig>
More information about the Observatory
mailing list