[cabfpub] Notice of Certificate Issuance

Gervase Markham gerv at mozilla.org
Thu Dec 1 09:13:34 UTC 2016


Hi Dean,

On 01/12/16 03:45, Dean Coclin via Public wrote:
> For the past several years we have made a point to communicate to both
> customers and partners that they should avoid hard coding or otherwise
> constraining the CA’s supported by their applications given the
> increasing frequency of changes. 

So Symantec advises against key pinning in all circumstances?

Presumably this is publicly documented somewhere on your website that
customers are likely to see?

> In this case it is also explicitly
> called out in our CPS.

Could you give us a reference, please?

Gerv


More information about the Public mailing list