[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: "Certification Authorities are recommended to stop using MD5 altogether"

On Wed, 2008-12-31 at 14:15 -0500, Micah Anderson wrote:

> Does anyone have a legitimate reason to trust any particular Certificate
> Authority? 

The trust comes with knowing the procedures a CA uses to verify the
particulars of the people asking (or indeed paying) them to sign
certificates. The point of signing certificates is to generate a web of
trust, you trust that X is who they say they are bcause Y(whom you
trust) says they are.

Nikolai Lusan <nikolai_@_lusan_._id_._au>

Reply to: