Comment 30 for bug 28048
Revision history for this message
|
|
#30 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)
Should we bring up verisign at this point issuing certificates to social
engineers?
The public should have lost all TRUST in verisign at point in time, instead
nothing happened... TRUST as defined in CPS documents, has nothing to do with
trust as most people consider it, nothing at all to do with trusting the pki
process at all.
The certification processes as I stated before are all about policy documents,
nothing more nothing less, and yes I have seen and read those pages before along
with a lot of others.
Also another good read is...
The Shocking Truth About Digital Signatures and Internet Commerce
http://
And for further reading...
Ten Risks of PKI: What You're Not Being Told About Public Key Infrastructure
http://
http://