[cryptography] How are expired code-signing certs revoked?

Marsh Ray marsh at extendedsubset.com
Wed Dec 7 21:26:57 EST 2011


On 12/07/2011 08:12 PM, lodewijk andré de la porte wrote:
> I'm afraid "far more effective" just doesn't cut it. Android has
> "install .APK from third party sources" which you'll engage whenever you
> install an APK without using the market, trusted or not.

That's why I didn't use Android as an example.

I said "Apple's iPhone app store code signing is far more effective".

- Marsh



More information about the cryptography mailing list