A mighty fortress is our PKI

Peter Gutmann pgut001 at cs.auckland.ac.nz
Tue Jul 27 10:23:07 EDT 2010


Ian G <iang at iang.org> writes:

>**  But talking about TLS/SNI to SSL suppliers is like talking about the
>lifeboats on the Titanic ... we don't need it because SSL is unsinkable.

... or talking to PKI standards groups about adding a CRL reason code for
"certificate issued in error" (e.g. to an imposter).  This was turned down
because CA's never make mistakes, so there's no need to have such a reason
code.

Peter.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list