Posted by Árpád Magosányi on Apr 09

Hi,

This is not a security vulnerability in itself, “just” a trend
undermining the trust architecture of the whole internet 🙂

I think it is very important, and wonder why I don’t see any discussion
of it. If this is not the right forum to discuss it, please direct me to
the right place.

The problem is:

Browser developers are dropping support for X509 key generation.
Yes, <keygen> have its problems. But window.crypto -…