It's cryptographically signed. it can be validated. browsers can implement it if... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

pas on Dec 1, 2022 | parent | context | favorite | on: Mozilla moves to distrust the TrustCor CA

It's cryptographically signed. it can be validated. browsers can implement it if they wish.

I mean it's not like you need it for every HTTP request, or not like DNS is slow.

yes, there are potential risks. keys can be leaked. just as in any other scenario.

Avamander on Dec 1, 2022 [–]

> It's cryptographically signed. it can be validated. browsers can implement it if they wish.

Valid != trustworthy.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact