Arrakis wrote: > Why not use digital certificates provided by CACert. They are free, and > have high levels of assurity, as opposed to a CAs like Verisign that > have little to no assurity, and charge a ransom. > > > Well
1) Not audited 2.) Not in Mozilla, or most other browsers because of #1 3.) Assurance is burdensome and impossible for some. 4.) Assurances are made by hobbyists, such a system can be easily bought off or compromised by carelessness because the assurers have no accountability. > Gervase Markham wrote: > >> Jean-Marc Desperrier wrote: >> >>> I agree. *Therefore* Mozilla.org need to have it's own code signing >>> authority, and only accept code signed by it. You have all the >>> competence needed on this group to help you set it up. >>> >> Where in this group is there competence and experience in worldwide >> identity vetting and validation? >> >> My definition of a "sucky" code signing cert is one in which the >> information inside about the owner of the cert isn't accurate. >> >> Gerv >> _______________________________________________ >> dev-tech-crypto mailing list >> dev-tech-crypto@lists.mozilla.org >> https://lists.mozilla.org/listinfo/dev-tech-crypto >> >> > _______________________________________________ > dev-tech-crypto mailing list > dev-tech-crypto@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-tech-crypto > -- *Pengdows, Inc.* Everyone deserves privacy. Pengdows, Inc. <http://www.pengdows.com> Alaric Dailey - President * StartCom 'Web of Trust' Member <http://www.startssl.org> * Thawte 'Web of Trust' Notary <http://www.thawte.com/secure-email/web-of-trust-wot/index.html> * Notary Public and NNA member <http://www.nationalnotary.org/> * CAcert 'Web of Trust' Assurer <http://www.cacert.org/wot.php?id=3> National Notary Association Member ATTENTION USERS OF MICROSOFT OUTLOOK AND MICROSOFT OUTLOOK EXPRESS: Some versions of these products have trouble replying to digitally signed emails, like this one. For more information on this error, and how to fix it please visit Mark Nobles website here <http://www.marknoble.com/tutorial/smime/smime.aspx>. Having trouble validating the digital signature? Install the Certification Authority <http://cert.startcom.org/?app=109> _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
