Comment by throwway120385
13 hours ago
Yeah but CAs want to sell you certificates, and browsers compete on their support for those certificates.
13 hours ago
Yeah but CAs want to sell you certificates, and browsers compete on their support for those certificates.
Huh? They really don't. It's actually kind of unfortunate that browsers don't have uniform policies about what certificates they accept, but for obvious reasons each browser wants to make their own decision.
They do have uniform policies, those policies come from the aforementioned CA/Browser Forum, which has been issuing its Baseline Requirements for over a decade.