Update CT section to include CAA and mandatory CT.

GSA / https

The HTTPS-Only Standard for federal domains (M-15-13), and implementation guidance.

https://https.cio.gov

Other

248 stars 87 forks source link

Closed brodygov closed 5 years ago

brodygov commented 5 years ago

For the question of limiting which CAs can issue, there is now a much more responsive answer made possible by CAA.
Split out CT into a separate question on how to monitor / detect issuance.
Update CT language to reflect that CT is now mandatory in Chrome for new certificates.