[cabfpub] Misissuance of certificates
Ryan Sleevi
sleevi at google.com
Mon Nov 9 20:38:34 MST 2015
On Mon, Nov 9, 2015 at 9:30 AM, Eddy Nigg <eddy_nigg at startcom.org> wrote:
> I assume this isn't exactly the philosophy of CT, besides that I expect
> that it technically wouldn't work (since it would produce a different
> hash), but this is Ryan's show...
>
It really isn't, it's the IETF's show.
Based on your reply, I'm suspecting you may not have read how name
redaction works? It's long been understood (as in O(years) ) how it would
technically work -
https://tools.ietf.org/html/draft-ietf-trans-rfc6962-bis-10#section-4.2
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://cabforum.org/pipermail/public/attachments/20151109/1b6842c7/attachment.html
More information about the Public
mailing list