On 01/22/2009 12:17 PM, Kyle Hamilton:
- The ability for other entities to mine that data for improper contact
- The ability for the information in the certificates to be otherwise misused
- Not every certificate user wants to identify as being a part of a
given PKI system
- Requiring full disclosure of the linkage of legal name to email
address (for end-user certs, not necessarily end-entity certs)
violates the end-entity's ability to control dissemination of
information
* nobody has yet signed up for this
* if this becomes common, it'll be the death knell for client
certificate authentication (nobody will participate)
- No CA wants to reveal its actual subscriber numbers
I'm pretty sure that Eddy'll be able to come up with more, as well as
Rob, and representatives from other CAs.
I think you covered it even better than me :-)
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
