Confirmed users, Administrators
5,526
edits
CA/Additional Trust Changes: Difference between revisions
added pointer to reports of revoked intermediate certs
(Removed obsolete ANSII section) |
(added pointer to reports of revoked intermediate certs) |
||
| Line 9: | Line 9: | ||
==OneCRL== | ==OneCRL== | ||
While not technically a modification to the root store as we don't use it for un-trusting roots, Mozilla's [https://blog.mozilla.org/security/2015/03/03/revoking-intermediate-certificates-introducing-onecrl/ OneCRL] system is used for communicating information about the revocation of intermediate certificates (and high-profile misissued end-entity certificates) to Firefox clients. | While not technically a modification to the root store as we don't use it for un-trusting roots, Mozilla's [https://blog.mozilla.org/security/2015/03/03/revoking-intermediate-certificates-introducing-onecrl/ OneCRL] system is used for communicating information about the revocation of intermediate certificates (and high-profile misissued end-entity certificates) to Firefox clients. Reports are provided about revoked intermediate certificates on the [[CA/Intermediate_Certificates|CA/Intermediate Certificates wiki page]]. | ||
==Distrust After== | ==Distrust After== | ||