Kai Engert wrote: > Wouldn't he require an object-signing aka code-signing cert?
Not as I understand it. We are talking about making sure that the downloaded file is the correct file, not making sure that the code is traceable back to a particular named individual. That's a separate issue. Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
