On 15/07/16 10:04, 'Eran Messeri' via certificate-transparency wrote:
> Hi,
>
> There are some monitors that already support such things - see
>
https://crt.sh.
At the moment, the best way to automatically run a crt.sh query
regularly is via Atom feed.
e.g.
https://crt.sh/atom?q=%25.example.com
> Tom Fitzhenry <
https://github.com/tomfitzhenry> operated a monitor that
> would provide what you're after, but that seems offline now.
>
> Eran
>
> On Fri, Jul 15, 2016 at 5:03 AM, aa_kira <
ak...@mitre.org
> <mailto:
ak...@mitre.org>> wrote:
>
> Another "newbie" here with some off-the-wall questions.
>
> Is there or will there be a capability to submit a query to one (or
> all existing) CT logs to find out if a rogue CA is mis-issuing
> certificates, claiming to be "my" CA? If I'm running a small PKI
> enterprise with a few online Sub-CAs, I don't have enough resources
> to continuously check on all the other CT Logs that are out there in
> order to spot someone else's CA misbehaving. An automated capability
> would really be nice - run a daily script to go check the CT Logs to
> see if there's been a certificate issued in the name of my PKI/CA.
>
> Will CT support anything like this? Does it already? Is this just
> a stupid idea and of course there's a better way to do this - ?
>
> Thanks for the feedback.
>
> --
> You received this message because you are subscribed to the Google
> Groups "certificate-transparency" group.
> To unsubscribe from this group and stop receiving emails from it,
> send an email to
>
certificate-transp...@googlegroups.com
> <mailto:
certificate-transp...@googlegroups.com>.
> --
> You received this message because you are subscribed to the Google
> Groups "certificate-transparency" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to
certificate-transp...@googlegroups.com
> <mailto:
certificate-transp...@googlegroups.com>.
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel:
+44.(0)1274.730505
Office Fax:
+44.(0)1274.730909
www.comodo.com
COMODO CA Limited, Registered in England No. 04058690
Registered Office:
3rd Floor, 26 Office Village, Exchange Quay,
Trafford Road, Salford, Manchester M5 3EQ
This e-mail and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they are
addressed. If you have received this email in error please notify the
sender by replying to the e-mail containing this attachment. Replies to
this email may be monitored by COMODO for operational or business
reasons. Whilst every endeavour is taken to ensure that e-mails are free
from viruses, no liability can be accepted and the recipient is
requested to use their own virus checking software.