Kyle Hamilton:
How much does it cost the CA to mint a new certificate?
Not much...guess that part is covered by the standing run time costs of the CA.
How much liability does the CA assume in the case where a subject's certificate is used by someone other than the subject through no real fault of the subject's?
Key generation of EE certificates is usually covered in the CP/CPs to be the responsibility of the subscriber. In this respect the CA can't be liable, except if the "trustworthy" system the user is supposed to use was that of the CA and/or the key was provided by the CA.
(This is one of the reasons why I don't believe it's viable to charge per-certificate, but rather per-timeperiod.)
Or how about a per validation charge since this is really the real effort a CA does? ;-)
Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390
_______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
