Re: Improving SSL client auth and bad certificate reporting innon-browser applications

Related work: http://tools.ietf.org/wg/pkix/draft-ietf-pkix-certimage/ will IMHO be difficult to roll out because it mixes local GUI requirements with relying party ditto. anders - Original Message - From: "Kai Engert" Newsgroups: mozilla.dev.tech.crypto To: Sent: Sunday, March 28, 2

Re: Improving SSL client auth and bad certificate reporting in non-browser applications

On 28.03.2010 06:19, Nelson B Bolyard wrote: The sequence of events in the dialog is likely, IMO, to give the users the impression that client authentication is a user-initiated act, rather than a server initiated act. It seems to say to the user, "if you want to authenticate to this server with

Re: no release tarball for 3.12.6

Am Sonntag 28 März 2010 schrieb Jean-Marc Desperrier: > You are two days late : > https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_12_6_RT > M/src/ > > Dated from the 25 of march. Ok, but the bug is not closed and the webpage not updated. https://bugzilla.mozilla.org/show_bug.c