|
|
|
|
|
|
by peterwwillis
2747 days ago
|
|
|
We still have to depend on CAs to 'follow the rules', and the client has to support it (does your mail client verify Cert Transparency? does your backend microservice?) and be connected to the Internet, and Google, etc. There are better ways to handle it, I think, but they may involve changing how we both sign and verify certs. |
|
|