[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: X.509 certs that don't guarantee identity



Michael A. Atzet wrote:
> Jeff Weinstein wrote:
> >
> >   The navigator will not be configured to automatically trust the
> > verisign level 1 and 2 certificates for SSL servers.  You will get
> > the same warning dialog with these certs as you do with one you
> > generate on your own.
> >
> How will Navigator differentiate between the different level certs? I
> am not aware of any fields in the cert itself that designate what
> level it is.  I know that the subject info would "look" different for
> a persons name vs. email address vs commom name.

The different levels of certificate are signed by different CA certs.

-- 
Sure we spend a lot of money, but that doesn't mean | Tom Weinstein
we *do* anything.  --  Washington DC motto          | [email protected]