CA/CT Redaction: Difference between revisions

Jump to navigation Jump to search

CA/CT Redaction (view source)

Revision as of 21:50, 28 November 2017

76 bytes added ,  28 November 2017
→‎Redaction Reduces Visibility and Accountability To The Public: Added CA redaction by default
Line 74: Line 74:
=== Redaction Reduces Visibility and Accountability To The Public ===
=== Redaction Reduces Visibility and Accountability To The Public ===


CT redaction would reduce internet security due to a loss of visibility and accountability in the Web PKI. This would reduce the value of CT logs to the ecosystem. There is a strong likelihood of "over-redaction", where enterprises choose to redact certificates by default out of misplaced security concerns.
CT redaction would reduce internet security due to a loss of visibility and accountability in the Web PKI. This would reduce the value of CT logs to the ecosystem. There is a strong likelihood of "over-redaction", where enterprises choose to redact certificates by default out of misplaced security concerns. Some CAs may simply choose to redact all certificates or redact by default.


=== Redaction Reduces Visibility and Accountability to Domain Owners ===
=== Redaction Reduces Visibility and Accountability to Domain Owners ===
Wthayer
136

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1184948"

Navigation menu