[Cryptography] Commercial PKI as dog poop
jrzx
jrzx at protonmail.ch
Thu May 13 07:43:16 EDT 2021
On Wednesday, May 12, 2021 7:52 AM, Salz, Rich via cryptography <cryptography at metzdowd.com> wrote:
> The relationship between a business and its CDN is a
> contractual agreement between the two parties. You
> shouldn’t care about the CDN
The CDN violates the expectations of the party relying on the
certificate.
It affects three parties. One of the parties, and quite
likely two of the parties, does not know what is going on.
If something goes wrong, the owner of the name can
complain. But the expectation of the people using his
site, and probably his expectation, is that he is in charge of the
name, because he paid for it. He is not.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.metzdowd.com/pipermail/cryptography/attachments/20210513/5aad7c3e/attachment.htm>
More information about the cryptography
mailing list