|
|
|
|
|
|
by brendn
4829 days ago
|
|
|
By my understanding, yes and yes. The third-party service caches the public key (with timestamp) and the browser caches the signed certificate (with timestamp). The timestamp gives the credentials a relatively short TTL to prevent a stolen cert from being used indefinitely. |
|
|