Hi. I was wondering if there was a timeline for TLS 1.2 support in
libnss. I have a strong interest in the TLS extensions (particularly
server_name) as well as, of course, improved security, but I also have a
strong interest in Firefox and Chromium on the client side.
--
frigidcode.com
theologia.
Just a quick thought, that I don't want to lose.
Maybe it would be a reasonable middle-ground to define:
- for intermediate CAs, OCSP information is published in DNS
- for servers, we use OCSP stapling
(Rob, thanks for your response, I'm still digesting.)
Regards
Kai
--
dev-tech-crypto mailing
2 matches
Mail list logo
