If you are the authority yourself, you can just commit to not giving out certifi... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

tinus_hn on July 14, 2021 | parent | context | favorite | on: Increasing HTTPS Adoption

If you are the authority yourself, you can just commit to not giving out certificates outside a specific domain.

JoshTriplett on July 15, 2021 [–]

If you're the authority you can restrict the certificate authority to a given set of domains, but that's if you're the authority.

I'd like browsers to give users control over that, to trust a CA in a limited fashion for only a subset of domains without trusting it to MITM the web.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact