Examples of SCT delivered via a TLS extension or OCSP response?
343 views
Skip to first unread message
Ivan Ristic
unread,
Mar 20, 2015, 7:43:36 AM3/20/15
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to ct-p...@chromium.org
I am adding detection of SCT to SSL Labs. I see that at least some new EV certificates contain embedded SCTs, but are there any known deployments using TLS extensions and OCSP responses as delivery vehicles? Thanks.
Rob Stradling
unread,
Mar 20, 2015, 7:52:32 AM3/20/15
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Tom Ritter
unread,
Mar 20, 2015, 11:54:25 AM3/20/15
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Rob Stradling, Ivan Ristic, ct-p...@chromium.org
Thanks Rob!
LMK if you have any problems. A site running on the same server
(crypto.is) also supplies via TLS and OCSP, and if needed I should be
able to go in and disable OCSP stapling entirely (for a few days) on
one of them to give another test case.