[Cryptography] Why Alexander Hanff won't be using "Let's Encrypt"

Tony Arcieri bascule at gmail.com
Wed Dec 3 14:00:28 EST 2014

On Wed, Dec 3, 2014 at 7:09 AM, Henry Baker <hbaker1 at pipeline.com> wrote:

> 'It is an insane strategy by all parties involved - it removes all
> confidence in TLS certificates as far as I am concerned and I will
> absolutely not be using the service and have to strongly recommend others
> refrain from doing so as well.'

This is a silly argument. It presumes Let's Encrypt is going to have a
bigger problem with misissuance than commercial CAs. Turns out that
commercial CAs are good at misissuing certificates too.

Whether or not misissuance will be a big problem with Let's Encrypt remains
to be seen, but it's always been a problem with the CA system, and Let's
Encrypt probably isn't going to change that. Can they do any worse than,
say, DigiNotar?

Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20141203/92584566/attachment.html>

More information about the cryptography mailing list