SSL, DNSSEC and protected data enroute? (was Re: off topic -how many people use OpenID ?)
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Fri Oct 20 22:33:33 UTC 2006
Recordon, David wrote:
>
> I honestly didn't believe this over a year ago when I first met the
> VeriSign guys, but I just want to make it clear that VeriSign is not
> involved in OpenID with the goal of selling SSL certificates.
>
Quite obvious, it's not about selling SSL server certificates. So I
believe, that if this network succeeds, than certification authorities
will have an interest in validating the user identity.
>
> >From a security perspective, self-signed certs can do a lot of what
> is needed for what OpenID is doing. At the same time, there really is
> value, even for OpenID, in a cert that chains up to a trusted CA.
>
I guess, that the designers of the protocol and specs have to make a
decision concerning that. Hope to have a positive influence on that part...
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Phone: +1.213.341.0390
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20061021/a975dbbc/attachment-0002.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: eddy_nigg.vcf
Type: text/x-vcard
Size: 636 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20061021/a975dbbc/attachment-0002.vcf>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7282 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20061021/a975dbbc/attachment-0002.bin>
More information about the general
mailing list