[Cryptography] Verisimilitrust

[Ben Laurie]

On 8 January 2016 at 01:09, Peter Gutmann <pgut001 at cs.auckland.ac.nz> wrote:
> Provide revocation info for certs - No, the browser vendor will.

That's not actually true for most revocations, at least in Chrome (I
don't know what other browsers do). OK, there are some where the
browser vendor knows that the cert needs to be revoked, and so revokes
it, but the majority of revocations are from info provided by CAs.

https://dev.chromium.org/Home/chromium-security/crlsets