See [comment here](https://github.com/nodejs/io.js/pull/1833#issuecomment-107782808): > As for this updating root certs, what shoudl we do for CNNNIC whitelist? https://blog.mozilla.org/security/2015/04/02/distrusting-new-cnnic-certificates/ > > Firefox and Chrome obtain serials of issued certs and checking them during cert verifying. > Firefox: https://bugzilla.mozilla.org/show_bug.cgi?id=1151512 > Chrome: https://codereview.chromium.org/1042973002 , https://codereview.chromium.org/1067723002 /cc @nodejs/crypto
See comment here:
/cc @nodejs/crypto