[cryptography] The Trouble with Certificate Transparency

Greg greg at kinostudios.com
Sat Sep 27 02:18:24 EDT 2014

Dear Paul,

Please see my reply to you on [trans] and this email from [messaging]:

Gossip doesn't save Certificate Transparency


> There is no reason you have to wait post-facto. You have the option to
> check the certificate you got from the TLS server with what you got from
> the audit log and gossip protocols before you send data to the TLS
> server.

Yep, as per link above, doesn't seem to help.

It's late for turtles, so I've got to head to sleep.


Please do not email me anything that you are not comfortable also sharing with the NSA.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.randombit.net/pipermail/cryptography/attachments/20140926/b3ba7793/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.randombit.net/pipermail/cryptography/attachments/20140926/b3ba7793/attachment.asc>

More information about the cryptography mailing list