What are the risks of trusting a certificate that is not logged in CT logs?
A website that I do banking on has a login page on a different subdomain than their main website, and this login page is secured with an Amazon-issued domain-validation certificate (their main website is secured with an extended-validation… Continue reading What are the risks of trusting a certificate that is not logged in CT logs?