- From: Christian Huitema <huitema@huitema.net>
- Date: Sat, 14 Dec 2013 23:16:55 -0800
- To: "'Stephen Farrell'" <stephen.farrell@cs.tcd.ie>, '"William Chan (ιζΊζ)"' <willchan@chromium.org>, "'Paul Hoffman'" <paul.hoffman@gmail.com>
- Cc: "'HTTP Working Group'" <ietf-http-wg@w3.org>
> What that leaves unclear for me is how the current 30-40% of web > sites that are setup for some form of TLS will suddenly become > 99%. Without some other action on helping sites get certs, it > just won't happen would be my prediction. Either helping sites get certs, or adding support for self-signed certs. Maybe combine self-signed certs and pinning. Maybe use a naming convention, something like "www-selfsigned.example.com." Or maybe www-07FDAE37.example.com, where 07FDAE37 is some identifier of the self-signed cert. If the browsers knew to expect a self-signed cert, they would not have to put up the scary UI when they find one... -- Christian Huitema
Received on Sunday, 15 December 2013 07:17:50 UTC