Y
Hacker News
new
|
ask
|
show
|
jobs
by
akerl_
158 days ago
It's almost like the threat models for CA and leaf certs are different.
1 comments
LunaSea
158 days ago
Yes, foot certs are much more sensitive than leaf certs.
link
akerl_
157 days ago
Which is why root certs are stored in HSMs, there’s a well defined total set of them, and if the owner violates any of the rules around handling of them, the CAB can put them out of business.
link