- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Thu, 19 Feb 2015 18:15:43 +0100
- To: noloader@gmail.com
- Cc: public-webapps WG <public-webapps@w3.org>
On Thu, Feb 19, 2015 at 6:10 PM, Jeffrey Walton <noloader@gmail.com> wrote: > On Mon, Feb 16, 2015 at 3:34 AM, Anne van Kesteren <annevk@annevk.nl> wrote: >> What would you suggest instead? > > Sorry to dig up an old thread. > > Here's yet another failure that Public Key Pinning should have > stopped, but the browser's rendition of HPKP could not stop because of > the broken security model: > http://arstechnica.com/security/2015/02/lenovo-pcs-ship-with-man-in-the-middle-adware-that-breaks-https-connections/. That does not really answer my questions though. -- https://annevankesteren.nl/
Received on Thursday, 19 February 2015 17:16:10 UTC