Iulai 26, 2019 Google
Ua waiho ʻia ka pilikia i kahi koho balota ma ka CA/Browser Forum (CABF), kahi e hoʻonohonoho ai i nā koi no nā palapala SSL/TLS, me ka manawa kūpono loa.
A laila ʻo Kepakemapa 10
Nā hualoaʻa
Kota ana ka mea hoopuka palapala
No (11 balota): Amazon, Buypass, Certigna (DHIMYOTIS), certSIGN, Sectigo (comodo CA mamua), eMudhra, Kamu SM, Let's Encrypt, Logius, PKIoverheid, SHECA, SSL.com
Kū'ē (20): Camerfirma, Certum (Asseco), CFCA, Chunghwa Telecom, Comsign, D-TRUST, DarkMatter, Entrust Datacard, Firmaprofesional, GDCA, GlobalSign, GoDaddy, Izenpe, Network Solutions, OATI, SECOM, SwissSign, TWCA, TrustCor, SecureTrust (ma mua Trustwave)
ʻAʻole ʻae ʻia (2): HARICA, TurkTrust
Ke koho balota nei nā mea kūʻai palapala
No (7): Apple, Cisco, Google, Microsoft, Mozilla, Opera, 360
E kūʻē aku: 0
Hoʻopaʻa ʻia: 0
Wahi a nā lula CA/Browser Forum, pono e ʻae ʻia kahi palapala hōʻoia e ʻelua hapakolu o nā mea hoʻopuka palapala a me 50% me hoʻokahi koho i waena o nā mea kūʻai.
Na Lunamakaainana o Digicert
ʻO kekahi ala a i ʻole, ʻaʻole mākaukau ka ʻoihana e hoʻopōkole i ka manawa kūpono o nā palapala hōʻoia a hoʻololi loa i nā hoʻonā automated. Hiki i nā mana palapala hōʻoia ke hāʻawi i nā lawelawe like, akā ʻaʻole i hoʻokō ka nui o nā mea kūʻai aku i ka automation. No laila, ua hoʻopanee ʻia ka hōʻemi ʻana o ka lā palena i 397 lā i kēia manawa. Aka, ua hamama ka ninau.
I kēia manawa e hoʻāʻo paha ʻo Google e hoʻokō i ka maʻamau "paʻa", e like me ka hana me ka protocol
E hoʻomanaʻo kākou ʻo ka automation piha kekahi o nā loina i hoʻokumu ʻia ai ka hana o ke kikowaena hōʻoia ʻole waiwai ʻo Let's Encrypt. Hāʻawi ia i nā palapala hōʻoia manuahi i nā mea a pau, akā ʻo ka lōʻihi o ke ola o kahi palapala i kaupalena ʻia i 90 mau lā. He pōkole ko nā palapala hōʻoia
- ka palena ʻana i ka pōʻino mai nā kī i hoʻopaʻa ʻia a me nā palapala hōʻoia i hāʻawi hewa ʻia, ʻoiai ua hoʻohana ʻia lākou i kahi manawa pōkole;
- Kākoʻo a paipai ʻia nā palapala hōʻoia pōkole, pono loa ia no ka maʻalahi o ka hoʻohana ʻana o HTTPS. Inā mākou e neʻe i ka Pūnaewele puni honua holoʻokoʻa i HTTPS, a laila ʻaʻole hiki iā mākou ke manaʻo i ka luna hoʻomalu o kēlā me kēia pūnaewele e hoʻololi lima i nā palapala hōʻoia. I ka manawa e hoʻopuka ʻia ai ka palapala hōʻoia a me nā mea hou e lilo i mea maʻalahi a maʻalahi hoʻi.
No ka hūnā ʻana i ka ʻona EV no nā palapala SSL i ka pahu helu, ʻaʻole koho ka consortium i kēia pilikia, no ka mea, ʻo ka pilikia o ka polokalamu UI aia i loko o ka mākaukau o nā mea hoʻomohala. I Kepakemapa-ʻOkakopa, e hoʻokuʻu ʻia nā mana hou o Chrome 77 a me Firefox 70, kahi e hoʻonele ai i nā palapala hōʻoia EV o kahi wahi kūikawā ma ka pahu helu pūnaewele. Eia ke ʻano o ka hoʻololi ʻana me ka hoʻohana ʻana i ka mana desktop o Firefox 70 ma ke ʻano he laʻana:
ʻO ia:
Will:
Wahi a ka loea palekana ʻo Troy Hunt, e hoʻoneʻe ana i ka ʻike EV mai ka pahu helu o nā mākaʻikaʻi
Source: www.habr.com