[tor-talk] Lets Encrypt compared to self-signed certs
bancfc at openmailbox.org
bancfc at openmailbox.org
Tue Mar 1 00:03:05 UTC 2016
Hi David. Thanks for chiming in. Please add a feature for pinning at the
key level as IMO it provides the best protection.
Will the logs provide users/site owners with a way to independently
check if coercion has happened?
Would systems like Cothority help Lets Encrypt users notice cert
issuance inconsistencies even under compelled assistance? This project
has the advantage of letting Tor clients spot anomalies in the Tor
consensus documents should any of the DirAuths be compromised and it can
be used for CAs too:
https://github.com/dedis/cothority
More information about the tor-talk
mailing list