[cabfpub] Misissuance of certificates

Ryan Sleevi sleevi at google.com
Tue Nov 10 03:38:34 UTC 2015


On Mon, Nov 9, 2015 at 9:30 AM, Eddy Nigg <eddy_nigg at startcom.org> wrote:

> I assume this isn't exactly the philosophy of CT, besides that I expect
> that it technically wouldn't work (since it would produce a different
> hash), but this is Ryan's show...
>

It really isn't, it's the IETF's show.

Based on your reply, I'm suspecting you may not have read how name
redaction works? It's long been understood (as in O(years) ) how it would
technically work -
https://tools.ietf.org/html/draft-ietf-trans-rfc6962-bis-10#section-4.2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20151109/1b6842c7/attachment-0003.html>


More information about the Public mailing list