Chrome’s CT program requires CT logs to maintain compliance with Chrome’s CT policy, which requires logs meet certain availability requirements, as well as adhere to RFC6962 and/or static-ct-api. This lightning talk describes how the Chrome CT team monitors for compliance with this policy, including what we check for, how, and what our process is for handling issues that we detect.
Speaker
Mustafa is a software engineer at Google on the Chrome Security team where he works on certificate transparency and web platform security. His work also extends to Chrome’s usable security and internationalized domain name security initiatives. He is based in Mountain View, California.
