[gnutls-devel] How to generate sums for Public-Key-Pins HTTP header ?
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Wed Feb 22 23:51:58 CET 2017
On Wed 2017-02-22 04:54:14 -0500, Nikos Mavrogiannopoulos wrote:
> Well adding something is easy, but the output of certificate
> information seems already quite bloated with Fingerprint
> (sha1/sha256), Public Key ID (sha1/sha256) and random art. Any ideas
> on what we could remove?
I've always been dubious about the utility of random art. it seems
*more* difficult for humans to do an exact match on than fingerprints,
and it takes up a lot of space. I'm not sure what its advantages are,
but if space is at a premium, it looks like the obvious choice to cut
to me.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: </pipermail/attachments/20170222/0d94cc0a/attachment.sig>
More information about the Gnutls-devel
mailing list