|
|
|
|
|
|
by lxgr
480 days ago
|
|
|
> And it's a new single point of control and failure! That’s why there is a mandatory minimum of several unaffiliated logs that each certificate has to be submitted to. If all of these were to catastrophically fail, it would still always be possible for browsers or central monitors to fall back to trusting certificates logged by exactly these without inclusion verification. |
|
|