1. 25 Jan, 2017 1 commit
  2. 05 Aug, 2016 1 commit
    • Daniel Kahn Gillmor's avatar
      Log key-pinning strings for TLS keys · 0cd371a4
      Daniel Kahn Gillmor authored
      RFC 7858 explicitly defines an out-of-band key pinning profile as one
      authentication mechanism.  It uses the same format for representing
      the pin as HPKP does (RFC 7469).
      
      By logging this pin directly upon first use of the X.509 credentials,
      we make it a little bit easier for an admin to publish part of a
      pinset.
      
      For ideal operation (including preparation for key rollover), a backup
      public key should also be provided, but this is not defined
      functionally here.
      0cd371a4