Since it's about addons (and not https connections) the same approach as with co... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		flohofwoe 12 months ago \| parent \| context \| favorite \| on: Certificate will expire on 14 March – update Firef... Since it's about addons (and not https connections) the same approach as with code-signing certificates could be used. For code signing it only matters that the certificate was valid at the time of signing, not when the signed resource is used. E.g. when the certificate expires, any resource signed with that certificate while it still was valid continues to be usable, you just can't sign any new releases with the expired certificate.

LoganDark 12 months ago | [–]

This requires a trusted timestamp, which is possible, you just have to think of it when you are designing the system.

dfawcus 12 months ago | | [–]

A "cunning plan" to force upgrades? :-)

merb 12 months ago | [–]

That only works with a timestamp service

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact