[cabfpub] Updated Certificate Transparency + Extended Validation plan

Adam Langley agl at chromium.org
Tue Feb 4 20:19:02 UTC 2014


On Tue, Feb 4, 2014 at 3:10 PM, Jeremy Rowley
<jeremy.rowley at digicert.com> wrote:
> If the certificate sets out on a two year journey with a passport, it might
> realize this is better than grabbing a utility bill and phone receipt.  Why
> would it carry garbage when it already has something everyone accepts?

We don't want to be in the position where we can't distrust a log
(*any log*) because it would render certificates invalid. Which is why
we're specifying that certificates carry multiple SCTs.


Cheers

AGL



More information about the Public mailing list