Re: FW: another attack that would be foiled by EV same origin policy

I don't see the point of all this. If we can't trust DV to at least do DV,
we have much bigger problems. Perhaps we can work this out in ca/b forum, if
not it's time to start pulling roots.

On Jul 14, 2009 12:02 PM, <michael.mccormick@wellsfargo.com> wrote:

 FYI



*From:* <a concerned browser vendor who I won’t out>
*Sent:* Monday, July 13, 2009 8:18 PM
*To:* McCormick, Mike; <unnamed others>
*Subject:* another attack that would be foiled by EV same origin policy



http://www.eweek.com/c/a/Security/Security-Researchers-Exploit-Vulnerability-in-Handling-of-EV-SSL-Certificates/

Received on Tuesday, 14 July 2009 19:11:57 UTC