Hello,
I’m running a daily query to scan all logged certs for cryptographic vulnerabilities (see here, if interested, for elaboration). Recently I discovered a lot of duplication in the certs I’m scanning. For example, frequently I find leaf-/pre-certificate pairs logged within seconds of one another.
All that I am interested in is the public keys, so it seems I have been wasting a good deal of compute scanning duplicate keys.
Here is the current query; i.e., the one that contains duplicate keys:
And here is what I propose replacing it with; i.e., the one that omits duplicate keys:
Above all, in optimizing the scan I do not want to miss ANY public keys signed by CAs.
Thanks!
Dave