I mean from an end user perspective - irrespective of google's stance on revoked certs - it's very unexpected that the browser info about the cert is that it is revoked but the padlock is green
---
oh okay, as some of the other comments points out, this puts it into some perspective:
http://s27.postimg.org/6cub79gbn/Screen_Shot_2014_04_13_at_1...
or through:
openssl s_client -connect revoked.grc.com:443
I mean from an end user perspective - irrespective of google's stance on revoked certs - it's very unexpected that the browser info about the cert is that it is revoked but the padlock is green
---
oh okay, as some of the other comments points out, this puts it into some perspective:
https://www.imperialviolet.org/2012/02/05/crlsets.html
---
In Safari it won't let me get to the page w/o dire warnings.