Can any CA sign any cert for any domain?
If the answer is yes, what prevents having two different CAs creating a valid cert for the same domain?
Does that mean that the whole TLS security has the same level of security of the least secure CA?
Aucun commentaire:
Enregistrer un commentaire