Re: A business model

* Ben Bucksch: > Florian, I think you refer to cert issued to spammers holding a > domain, and getting a DV cert for that domain that they registered? > The cert is issued correctly for the domain, just the organization > does not do clean business. This is a totally different issue. Oops, sorry,

Re: A business model

Florian, I think you refer to cert issued to spammers holding a domain, and getting a DV cert for that domain that they registered? The cert is issued correctly for the domain, just the organization does not do clean business. This is a totally different issue. I am talking about a phisher bei

Re: A business model

On Tue, Dec 30, 2008 at 12:47 PM, Florian Weimer wrote: > Usually, if the industry is not totally rotten, some players clean up > the field, often using the court system (we see attempts at that in > the antivirus market, for instance). I doubt that this will happen > with certificates because it

Re: A business model

* Ben Bucksch: > Now, 3 years later, some scammers and spammers actually notice me and > set up fake SSL sites with my certs. Not just fake sites. Some of the OEM software spammers use valid SSL certificates for the checkout procedure, e.g.: For those t

A business model

I have an idea for a nice "make money fast" business model: I'll make a CA. I'll talk about trust-worthiness and doing sophisticated verifications etc.. In my guidelines and processes, I say that I'll offer "HighSec high security certificates", where I'll get the in-person signature and passpo