[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Lets Encrypt compared to self-signed certs



Hi David. Thanks for chiming in. Please add a feature for pinning at the key level as IMO it provides the best protection.

Will the logs provide users/site owners with a way to independently check if coercion has happened?

Would systems like Cothority help Lets Encrypt users notice cert issuance inconsistencies even under compelled assistance? This project has the advantage of letting Tor clients spot anomalies in the Tor consensus documents should any of the DirAuths be compromised and it can be used for CAs too:

https://github.com/dedis/cothority
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk