[Cryptography] distrusted root CA: WoSign
Stephen Farrell
stephen.farrell at cs.tcd.ie
Mon Oct 3 19:43:37 EDT 2016
On 04/10/16 00:28, Peter Gutmann wrote:
> Salz, Rich <rsalz at akamai.com> writes:
>>> I am not suggesting you write a patch, I am suggesting you propose
>>> something that actually works instead of whining about how the system is
>>> fixed. So far, I have seen no such proposal.
>>
>> Dissolve CABForum and host it under IETF or OASIS or any other open standards
>> organization.
>
> I would say get the EFF or someone similar to run it. Both of those groups,
> while nominally open, are way too easy to render captive to vendor interests.
> I'm not saying they do bad work, but that the structure is very vulnerable to
> vendor stacking.
I'm biased, but though EFF do fantastic work, I don't think
they're that open in the sense most relevant here. That said,
I think either your or Rich's postulated futures would be
better than the status quo - which of those would be the
"betterest" is probably moot however.
S.
>
> Peter.
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3840 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20161004/54a05026/attachment.bin>
More information about the cryptography
mailing list