Netscape, CAs, and Verisign
Adam Shostack
adam at lighthouse.homeport.org
Mon Jan 29 07:54:15 PST 1996
Jeff Weinstein wrote:
| >
| > The problem is simple enough: sites with certificates from one of the CAs
| > that are preconfigured in Netscape have a tremendous advantage over sites
| > with certs from other CAs, and it's expensive and difficult to get a cert
| > if you're running an alternative server like ApacheSSL.
[...]
| > Netscape needs to address the situation. It's just not practical or
| > desireable for one company (Verisign) to have a stranglehold on
| > certificates.
Its unfortunate that Jeff speaks only for himself when he
wrote the following. I'd very much like to hear Netscape speaking as
Netscape announce that a policy for CAs is forthcoming.
Adam
| I agree with what you are saying. I very much want to see real competition
| in the certificate issuing business. We are in the process of developing
| a set of criteria that CAs have to meet in order to be included in the
| "default" list of CAs that our products support. The criteria focus
| on assuring support for our customers more than trying to specify a
| particular policy. The criteria will include things like required
| minimum response times for customer problems, compliance with an
| interoperability spec, publishing of policies, etc. Some time in
| the next few months these criteria will be made public, and that
| should allow for open competition.
[much elided]
| --
| Jeff Weinstein - Electronic Munitions Specialist
| Any opinions expressed above are mine.
--
"It is seldom that liberty of any kind is lost all at once."
-Hume
More information about the cypherpunks-legacy
mailing list