Y
Hacker News
new
|
ask
|
show
|
jobs
by
snoopy_telex
1292 days ago
Don’t you have to trust the CA to actually log all the certs they issue? What’s to stop a rogue CA from logging all but a few key certs?
1 comments
pifm_guy
1289 days ago
Anyone else can log a cert too. There was talk of Chromium logging any cert that chains to a public root that they find un-logged.
link