On 01/23/2009 10:56 PM, Florian Weimer:
* Michael Ströder:
Florian Weimer wrote:
What about requiring that all certificates must be published by the CA
(including sub-CAs)?
No, this might lead to also revealing internal DNS names never meant to
be public.
Huh? Typical CA policies explicitly state that subscriber
certificates are not confidential
Yes, that's correct, because obviously the details published in the
certificate can't be treated as private. Which however doesn't mean that
CAs have go and publish all subscribers details.
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
Jabber: start...@startcom.org
Blog: https://blog.startcom.org
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
