* Home Help Search Login Register  

Welcome, Guest. Please login or register.
Did you miss your activation email?
May 18, 2013, 11:12:18 PM

Login with username, password and session length

662918 Posts
70573 Topics
145148 Members
Latest Member: letyiamc

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  General Category
| |-+  General Discussion (off topic) Anything and everything...
| | |-+  Google to strip Chrome of SSL revocation checking		 « previous next »
Pages: [1] Go Down Print
Author Topic: Google to strip Chrome of SSL revocation checking  (Read 2545 times)
Radaghast
Star Group
Comodo's Hero
*****
Offline Offline

Posts: 4052
« on: February 06, 2012, 10:49:16 PM »
This is interesting. We certainly need change, but is this the way...

Google to strip Chrome of SSL revocation …
Logged
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”
Ronny
Product Translator
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 13195


Volunteer Moderator
« Reply #1 on: February 07, 2012, 09:57:49 AM »
I would have expected switching to hard fail but it seems user experience wins again from security.

I do agree that 'soft fail' is useless tough.
Logged
Volunteer Moderator
Any concerns? Please send me a PM or review the Forum Policy -  update Jan 3rd 2013!
Melih
CEO - Comodo
Administrator
Comodo's Hero
*****
Offline Offline

Posts: 12913



WWW
« Reply #2 on: February 07, 2012, 01:57:24 PM »
we don't agree with this approach.
Logged
Who is Melih? What is he trying to do?  -- Follow me on Twitter
Radaghast
Star Group
Comodo's Hero
*****
Offline Offline

Posts: 4052
« Reply #3 on: February 07, 2012, 10:49:05 PM »
This decision seems to be getting quite mixed reactions, so far. Basically, everything from, best thing they could have done, to, it's a complete disaster.
Logged
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”
Melih
CEO - Comodo
Administrator
Comodo's Hero
*****
Offline Offline

Posts: 12913



WWW
« Reply #4 on: February 07, 2012, 11:03:16 PM »
Quote from: Radaghast on February 07, 2012, 10:49:05 PM
This decision seems to be getting quite mixed reactions, so far. Basically, everything from, best thing they could have done, to, it's a complete disaster.

do we know the reasons why people think its the best thing or a disaster? thx.
Logged
Who is Melih? What is he trying to do?  -- Follow me on Twitter
Radaghast
Star Group
Comodo's Hero
*****
Offline Offline

Posts: 4052
« Reply #5 on: February 08, 2012, 12:16:51 AM »
Quote from: Melih on February 07, 2012, 11:03:16 PM
do we know the reasons why people think its the best thing or a disaster? thx.

I've not found any 'serious' write-ups about the decision, yet, I'm sure we'll see a few in the next day or so.  Most of those in favour of the move by Google cite the deficiencies in OCSP, such as the limitations in the information checked, CA OCSP server unavailability, lack of encryption etc.
Logged
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”
Melih
CEO - Comodo
Administrator
Comodo's Hero
*****
Offline Offline

Posts: 12913



WWW
« Reply #6 on: February 08, 2012, 05:40:12 AM »
Quote from: Radaghast on February 08, 2012, 12:16:51 AM
I've not found any 'serious' write-ups about the decision, yet, I'm sure we'll see a few in the next day or so.  Most of those in favour of the move by Google cite the deficiencies in OCSP, such as the limitations in the information checked, CA OCSP server unavailability, lack of encryption etc.

this is like saying " a door can be broken  so lets remove it"..
instead they should be saying, how can we improve it!!!
Logged
Who is Melih? What is he trying to do?  -- Follow me on Twitter
Radaghast
Star Group
Comodo's Hero
*****
Offline Offline

Posts: 4052
« Reply #7 on: February 08, 2012, 07:15:10 AM »
Quote from: Melih on February 08, 2012, 05:40:12 AM
this is like saying " a door can be broken  so lets remove it"..
instead they should be saying, how can we improve it!!!

That's pretty much what the other camp are saying.
Logged
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.”
Melih
CEO - Comodo
Administrator
Comodo's Hero
*****
Offline Offline

Posts: 12913



WWW
« Reply #8 on: February 08, 2012, 07:41:49 AM »
Quote from: Radaghast on February 08, 2012, 07:15:10 AM
That's pretty much what the other camp are saying.

the assumption they have: Infrastructure is not possible to improve to an acceptable level.

our answer: unless we have clear supporting data, one cannot make this judgement.

Lets get the data, lets analyse if its good enough or not, if its not, identify what needs to be done to fix it..if what needs to be done to fix it is too much, then go with DNS based solution cos we know DNS works Smiley
Logged
Who is Melih? What is he trying to do?  -- Follow me on Twitter
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Certificate Free Virus Removal Firewall
Page created in 0.043 seconds with 20 queries.
Powered by SMF 1.1.18 | SMF © 2006, Simple Machines Design by 7dana.com