[cabfpub] Domain validation
ansaboor at microsoft.com
Thu Apr 16 09:30:02 MST 2015
If site owner cares enough, he can protect against his certificates being stolen by the attacker you outlined, but he will not be able to protect against CAs following our guidelines issuing certificate for that attacker.
From: Gervase Markham [mailto:gerv at mozilla.org]
Sent: Thursday, April 16, 2015 9:28 AM
To: Anoosh Saboori; Eddy Nigg; public at cabforum.org
Subject: Re: [cabfpub] Domain validation
On 16/04/15 17:27, Anoosh Saboori wrote:
> Not if the SSL certificate is bound to hardware (like TPM).
How common is that?
More information about the Public