Shaun,
What is it about Oregon as compared to other states that make it easy to
become a CA?
I have setup several internal CAs for companies and issued many many
self-signed certificate, but as Crispin pointed out they aren't trusted by the
browser (unless the user says Yes the first time).
I am a little confused about the Oregon CA comments, thank you in advance
for the clarification.
-Jacob Redding
Quoting Crispin Cowan <crispin@private>:
> Shaun Savage wrote:
>
> > You can make your certs your self.
> > In Oregon, it is easy to become a Certificate Authority (CA) by
> > registering with the state.
> > Have your company become a CA for your company.
>
> ... with the nasty little disadvantage that none of the users' browsers
> will recognize the self-signed certificates. This business of being a CA
> with your public key embedded in the common browsers is an interesting
> little racket :)
>
> > I have used Thawte, but they are a part of Verisign now.
>
> Thawte is the discount arm of VeriSign. At the time that VS bought
> Thawte, VS had 60% of the cert market, Thawte had 30%, and a hundred
> others shared the scrap. I'm simply amazed that the FTC let it go
> through, as now VS has a defacto monopoly.
>
> Crispin
>
> --
> Crispin Cowan, Ph.D. http://immunix.com/~crispin/
> Chief Scientist, Immunix http://immunix.com
> http://www.immunix.com/shop/
>
>
>
This archive was generated by hypermail 2b30 : Thu Nov 06 2003 - 23:37:50 PST