[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Netscape, CAs, and Verisign

To: Adam Shostack <[email protected]>, [email protected]
Subject: Re: Netscape, CAs, and Verisign
From: [email protected]
Date: Tue, 30 Jan 96 18:50:12 -0500
Cc: [email protected]
In-Reply-To: Your message of "Mon, 29 Jan 96 10:23:44 EST." <[email protected]>
Sender: [email protected]


A lot of people seem to misunderstand the Verisign plan, they are not simply 
looking to be a CA, they are looking to help other people become CAs. There is 
clearly a usefull role for a company to do this. there is also a usefull role 
for two, or more.

Question is how can Netscape (or anyone else) _securely_ allow an arbitrary CA's 
certificate to be used? Certainly the process cannot be automatic. Binding the 
Verisign public key into the browser may be an undesirable solution, but the 
problem is to think of a better one.

	Phill

References:
- Re: Netscape, CAs, and Verisign
  - From: Adam Shostack <[email protected]>

Prev by Date: Re: No FV supporters?
Next by Date: Re: The FV Problem = A Press Problem
Prev by thread: Re: Netscape, CAs, and Verisign
Next by thread: The Unintended Consequences of Suppression
Index(es):
- Date
- Thread