Re: "Certification Authorities are recommended to stop using MD5 altogether"
On Wed, 2008-12-31 at 14:15 -0500, Micah Anderson wrote:
> Does anyone have a legitimate reason to trust any particular Certificate
> Authority?
The trust comes with knowing the procedures a CA uses to verify the
particulars of the people asking (or indeed paying) them to sign
certificates. The point of signing certificates is to generate a web of
trust, you trust that X is who they say they are bcause Y(whom you
trust) says they are.
--
Nikolai Lusan <nikolai_@_lusan_._id_._au>
Reply to: