Editing Talk:1353: Heartbleed
Please sign your posts with ~~~~ |
Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.
The edit can be undone.
Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 40: | Line 40: | ||
" | " | ||
''If the certificate is registered the browser accepts it.'' This is incorrect. Server certificates aren't accepted because they're registered, they're accepted because they can prove a chain of trust up to a CA certificate which is explicitly trusted. Ironically, certificates only need to be registered when they're revoked (on a CRL - certificate revocation list). The whole idea of the digital certificate system we use is that of federated trust, which requires no online lookup to validate a certificate. [[User:Jezzaaaa|Jezzaaaa]] ([[User talk:Jezzaaaa|talk]]) 22:19, 10 April 2014 (UTC) | ''If the certificate is registered the browser accepts it.'' This is incorrect. Server certificates aren't accepted because they're registered, they're accepted because they can prove a chain of trust up to a CA certificate which is explicitly trusted. Ironically, certificates only need to be registered when they're revoked (on a CRL - certificate revocation list). The whole idea of the digital certificate system we use is that of federated trust, which requires no online lookup to validate a certificate. [[User:Jezzaaaa|Jezzaaaa]] ([[User talk:Jezzaaaa|talk]]) 22:19, 10 April 2014 (UTC) | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− |