88
edits
Platform/Roadmap: Difference between revisions
→PKI: Updates for end of Q2 for PKI.
(→Security: Update 2 for End of Q2 Security Review - Done) |
(→PKI: Updates for end of Q2 for PKI.) |
||
| Line 483: | Line 483: | ||
|- | |- | ||
| style="vertical-align:top;" | | | style="vertical-align:top;" | | ||
* OneCRL - certificate revocation list push mechanism. | |||
* Final round of 1024-bit root removals. | |||
------ Items above done before or during Q1 ------ | ------ Items above done before or during Q1 ------ | ||
* OCSP disabled for DV validations on Android. | |||
* Support skipping OCSP for short-lived certificates. | |||
------ Items above done before or during Q2 ------ | ------ Items above done before or during Q2 ------ | ||
* Certificate transparency (behind a pref). | |||
* Certificate transparency (behind a pref) | * Support the OCSP must-staple extension. | ||
* | * Enable skipping OCSP validation for short-lived certificates. | ||
* OCSP | * Support for CA-provided Intermediate certificate info in SalesForce. | ||
* Support Intermediate | * OneCRL: support blocking by subject and public key. | ||
------ Items above planned to be done before or during Q3 ------ | ------ Items above planned to be done before or during Q3 ------ | ||
* Add a mechanism to push security policy state updates. | |||
------ Items above planned to be done before or during Q4 ------ | ------ Items above planned to be done before or during Q4 ------ | ||
* TLS 1.3 | * TLS 1.3 | ||