-
I know that this is an older discussion, but what I don't get is how should a tls handshake succeed, if the server sends its tls.crt with only intermediate and leaf, and on the other side based on the…
-
Currently the [trust root](https://github.com/sigstore/protobuf-specs/blob/main/protos/sigstore_trustroot.proto) specifies roots of trust from services (CA, CT log, Rekor, and TSA). For bring-your-own…
-
**Description**
Goal is to provide a simple interface for users to provide their own roots of trust for services (Rekor, Fulcio, CT log, TSA) by using the "trust root" [specification](https://g…
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0xec7bc17cdbb6208d02f4a0ac0ea20b9ec3edd1f02deacab6e2ed24110ac2450f
**Severity:** medium
**Description:**
## Impact
At…
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0xfe8439d72f4caa0a6592ef4839a64c1b8e762dea2ef06b7a99fc5c03fab264bf
**Severity:** low
**Description:**
**Description**…
-
This would be a full generalization of #245: the `TrustRoot` as currently specified contains a 2D list (a list of CAs, each with one or more cert "chains"), which is now how X.509 talks about path val…
-
PGP keys use a trust model, with levels such as `Ultimate`, `Trusted`, `Untrusted` etc.
If they keys project will be used as a method to store trusted keys as well your own keys, the concept of tru…
-
At this moment, Intermediate certificates are not trusted by default when root is trusted.
For example site `vps.tomasek.cz` has certificate issued by Let's Encrypt. I manually uploaded **ISRG Root…
semik updated
2 months ago
-
>As an author of the Trust Expressions draft [wrote](https://mailarchive.ietf.org/arch/msg/tls/kBUBdLGEo-b5ywGoYFoJhoyW7KY/):
>>One of the (unstated, and perhaps we should state it clearer) goals o…
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0x837ffd8ef9213e85aecd0a9d41764f49015d96a5f7910756b43286fdea98045c
**Severity:** medium
**Description:**
**Descriptio…