Paul Hoffman wrote: > Exactly. I strongly suspect that KISA would do a better job at checking > identification of a Korean company in .com than the CAs in the lowest > quartile of capabilities whom we fully trust to do so.
But do we fix that problem by allowing the Korean government-audited CA to testify to the identification of anyone, or do we fix it by raising the standards of identification for existing CAs? Gerv _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto