There is a slashdot thread about this incident now. Yes, I remember UTN as being connected with Comodo in one way or another.
I thought that CA's accepted in the browser were supposed to have an AICPA audit about signing practices. If the AICPA allowed outsourcing authentication to random resellers that's a pretty unpleasant surprise.
I've been meaning to get around to ordering one of those Paypal hardware tokens... this seems like as good a time as any.
There is a slashdot thread about this incident now. Yes, I remember UTN as being connected with Comodo in one way or another.
I thought that CA's accepted in the browser were supposed to have an AICPA audit about signing practices. If the AICPA allowed outsourcing authentication to random resellers that's a pretty unpleasant surprise.
I've been meaning to get around to ordering one of those Paypal hardware tokens... this seems like as good a time as any.