[Ach] Recommendations creating CSRs
Hanno Böck
hanno at hboeck.de
Tue Oct 14 10:38:15 CEST 2014
Am Sun, 28 Sep 2014 20:42:41 +0200
schrieb Aaron Zauner <azet at azet.org>:
> HTKP is basically TOFU security with a more user friendly
> implementation. I do not see it getting
> accepted by IETF consensus, but I might be wrong.
> https://tools.ietf.org/html/draft-ietf-websec-key-pinning
HPKP is about to become RFC very soon.
I wrote an article that got publised today for the german IT magazine
Golem.de:
http://www.golem.de/news/https-zertifikate-key-pinning-schuetzt-vor-boesartigen-zertifizierungsstellen-1410-109799.html
Google translate for non-german-speaking people:
http://translate.google.de/translate?sl=de&tl=en&u=http%3A%2F%2Fwww.golem.de%2Fnews%2Fhttps-zertifikate-key-pinning-schuetzt-vor-boesartigen-zertifizierungsstellen-1410-109799.html
--
Hanno Böck
http://hboeck.de/
mail/jabber: hanno at hboeck.de
GPG: BBB51E42
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.cert.at/pipermail/ach/attachments/20141014/42d75753/attachment.sig>
More information about the Ach
mailing list