[cabfpub] CT discussion at CABF

Rob Stradling rob.stradling at comodo.com
Fri Feb 21 16:41:45 UTC 2014


The client update rate isn't particularly relevant to CT.  "Pre-CT" 
clients won't stop working once CT is deployed.  And even if Chrome is 
the only browser that ever implements CT, it will still provide some 
level of herd immunity to users of other browsers: detecting 
misissuances faster helps everyone.

In my view, the big problem is the painfully slow rate at which servers 
get updated.  It's because of this problem that Precertificates exist.

On 21/02/14 14:42, Ben Wilson wrote:
> Client updating is taking place at a pretty amazing rate nowadays.
>
> *From:*public-bounces at cabforum.org [mailto:public-bounces at cabforum.org]
> *On Behalf Of *Eddy Nigg (StartCom Ltd.)
> *Sent:* Friday, February 21, 2014 4:13 AM
> *To:* Rob Stradling
> *Cc:* Dean Coclin; Rick Andrews; public at cabforum.org
> *Subject:* Re: [cabfpub] CT discussion at CABF
>
>
> On 02/21/2014 12:55 PM, From Rob Stradling:
>
> There's a big difference between (1) a feature/update being available in
> the latest version of some third-party software and (2) that
> feature/update actually being deployed everywhere.
>
>
> Yes, this can take some time - as client software will have to be
> updated as well and pre-CT clients will not support CT either. A client
> that doesn't support CT will not check it either way, neither pre-cert
> nor otherwise. That's pretty much how things work.
>
> Regards
>
> Signer:
>
> 	
>
> Eddy Nigg, COO/CTO
>
> 	
>
> StartCom Ltd. <http://www.startcom.org>
>
> XMPP:
>
> 	
>
> startcom at startcom.org <xmpp:startcom at startcom.org>
>
> Blog:
>
> 	
>
> Join the Revolution! <http://blog.startcom.org>
>
> Twitter:
>
> 	
>
> Follow Me <http://twitter.com/eddy_nigg>
>

-- 
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel: +44.(0)1274.730505
Office Fax: +44.(0)1274.730909
www.comodo.com

COMODO CA Limited, Registered in England No. 04058690
Registered Office:
   3rd Floor, 26 Office Village, Exchange Quay,
   Trafford Road, Salford, Manchester M5 3EQ

This e-mail and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom they are 
addressed.  If you have received this email in error please notify the 
sender by replying to the e-mail containing this attachment. Replies to 
this email may be monitored by COMODO for operational or business 
reasons. Whilst every endeavour is taken to ensure that e-mails are free 
from viruses, no liability can be accepted and the recipient is 
requested to use their own virus checking software.



More information about the Public mailing list