Hacker News new | ask | show | jobs
by tptacek 18 days ago
I think a lot of people who work on the root programs would push back on the idea that the CAB Forum is a proxy for Google, Apple, and Microsoft.
1 comments
0xbadcafebee 17 days ago
They control the OS and the Browser, the two things that specify what CA certs can be validated and how. CAs can disagree all they want, but they can't do anything about it. The big 3 don't want to be in the CA business, so they haggle over rules, but it's not a level playing field
link
tptacek 17 days ago
Oh, I agree about their market power, just saying CAB is complicated.
link