Confirmed users
76
edits
SecurityEngineering/Public Key Pinning: Difference between revisions
SecurityEngineering/Public Key Pinning (view source)
Revision as of 22:08, 12 May 2014
, 12 May 2014→Built in Pins
No edit summary |
|||
| Line 20: | Line 20: | ||
We are attempting to: | We are attempting to: | ||
# Pin all of the sites that Chrome already does (Google, Twitter) by importing chromium's pinset. | # Pin all of the sites that Chrome already does (Google, Twitter) by importing chromium's pinset. | ||
# Pin our own sites after auditing them and cleaning them up, so that our users know that the updates we serve actually come from us. The list of initial mozilla sites that are pinned is being tracked at: | # Pin our own sites after auditing them and cleaning them up, so that our users know that the updates we serve actually come from us. The list of initial mozilla sites that are pinned is being tracked at: https://mana.mozilla.org/wiki/display/services/Mozilla+sites+SSL+Certificate+Authority+roots+sync+with+Gecko+Built-In+Pins | ||
https://mana.mozilla.org/wiki/display/services/Mozilla+sites+SSL+Certificate+Authority+roots+sync+with+Gecko+Built-In+Pins | |||
# Pin other popular sites like Facebook that are in good shape already (with their cooperation, of course) | # Pin other popular sites like Facebook that are in good shape already (with their cooperation, of course) | ||
Tracking bug: {{bug|1004350}} | Tracking bug: {{bug|1004350}} | ||
==Pinning Service == | ==Pinning Service == | ||