[OpenID] Rule of thumb
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Fri Jul 13 08:48:37 UTC 2007
John Wang wrote:
>
>
> In the PKI world, the mega-CAs are embedded in the browsers that
> automatically trust those CAs on behalf of the users, with most users
> not even realizing the browser ISV is making a trust decision for
> them. I've been wondering if there's anything wrong with CAs like
> CAcert that provide free certs to just provide encryption, as opposed
> to authentication. I see mega-IDPs like mega-CAs and do-it-yourself
> IDPs like CAcert.
Yes, there is something wrong with it and you should ask yourself, why
CAcert isn't in any browser at all....just ask the Mozilla folks about
it...If you need digital certification for low-assurance and encryption
purpose only you can get them for free from StartCom:
http://cert.startcom.org/ (Class 1, one year valid).
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: startcom at startcom.org
Phone: +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070713/03970578/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7282 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20070713/03970578/attachment-0002.bin>
More information about the general
mailing list