- From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
- Date: Tue, 10 Dec 2013 00:50:44 +0000
- To: Mark Nottingham <mnot@mnot.net>
- CC: Adrien de Croy <adrien@qbik.com>, Roberto Peon <grmocg@gmail.com>, HTTP Working Group <ietf-http-wg@w3.org>
On 12/10/2013 12:44 AM, Mark Nottingham wrote: > Sure. I'm thinking in terms of changes in browser behaviour (along > the lines that some have already explored), not changing TLS, or even > certs, necessarily. But there is a problem here - as I understand it many root stores have no controls over the protocols with which the roots can be used so if you insert a new root then you will also have affects on non-HTTP protocols that use TLS. What I've not seen is anyone who's proposing such changes (that do affect TLS) volunteering to do that analysis. I'd say its not an easy piece of work but absolutely necessary and it might well turn up a conclusion that this is a bad idea globally. S.
Received on Tuesday, 10 December 2013 00:51:17 UTC