Y
Hacker News
new
|
ask
|
show
|
jobs
by
CommanderData
181 days ago
Isn't certificate transparency opt-in, so any trusted CA could be a potential attack route.
1 comments
JoshTriplett
181 days ago
Browsers now require it to consider a certificate valid. Firefox, Chrome, and Safari all require a certificate to include proof of being logged in CT logs.
link