Re: Certificate Authorities

From: Bill_Roydsat_private
Date: Thu Oct 21 1999 - 07:55:45 PDT

Next message: Joseph S D Yao: "Re: Geography of an IP Address"

Previous message: Adam Shostack: "Re: Certificate Authorities"
Maybe in reply to: Joe Ippolito: "Certificate Authorities"
Next in thread: Chuck Swiger: "Re: Certificate Authorities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Normally you  are more secure if you have your own internal well secured CA. But
an internal CA has more difficulty cross certifying than an external CA that is
acting as CA for both you and the partner you want to share data with.
I think the Entrust web site at www.entrust.com has some information about the
tradeoffs.




"Joe Ippolito" <joeat_private> on 20/10/99 02:25:34 PM

Please respond to "Joe Ippolito" <joeat_private>

To:   firewall-wizardsat_private
cc:    (bcc: Bill Royds/HullOttawa/PCH/CA)
Subject:  Certificate Authorities



Is the expense of having an outside source provide CA keys for my organization
justified if I properly protect my own CA server on-site?.

Thanks for your input.

Next message: Joseph S D Yao: "Re: Geography of an IP Address"
Previous message: Adam Shostack: "Re: Certificate Authorities"
Maybe in reply to: Joe Ippolito: "Certificate Authorities"
Next in thread: Chuck Swiger: "Re: Certificate Authorities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:44:32 PDT