A mighty fortress is our PKI
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Tue Jul 27 10:23:07 EDT 2010
Ian G <iang at iang.org> writes:
>** But talking about TLS/SNI to SSL suppliers is like talking about the
>lifeboats on the Titanic ... we don't need it because SSL is unsinkable.
... or talking to PKI standards groups about adding a CRL reason code for
"certificate issued in error" (e.g. to an imposter). This was turned down
because CA's never make mistakes, so there's no need to have such a reason
code.
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list