SSL Status should include whether Cert chains to builtin token

NEW
Unassigned

Status

--
enhancement
7 years ago
7 years ago

People

(Reporter: devd, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

7 years ago
DPI solutions that MITM SSL traffic by adding new roots to the certdb are currently transparent to our users. It would be nice if Firefox could warn 'Your computer administrator might be spying on your communication' when the SSL server cert chains to a user-added root. For this, NSS should tell us when a cert is verified by user-added root.
You need to log in before you can comment on or make changes to this bug.