browser vendors and CAs agreeing on high-assurance certificat es
Ian G
iang at systemics.com
Fri Dec 23 13:48:59 EST 2005
> BTW, illustrating points made here, the cert is for
> financialcryptography.com
> but your link was to www.financialcryptography.com. So of course Firefox
> generated a warning....
Indeed.... and even if that gets fixed we still have
to contend with:
* the blog software can't handle the nature of a
TLS site (internal problems like non-working
trackbacks, internal links, posts, ...)
* the cert has to be shared with 3 other sites
* Firefox will still warn about it being a CAcert
signed certificate
* ... I'm sure there's more.
Hopefully over the next year, the webserver (Apache)
will be capable of doing the TLS extension for sharing
certs so then it will be reasonable to upgrade.
iang
PS: SSL v2 must die! Wot, you mean you haven't
turned it off in your browser yet?
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list