[cryptography] Auditable CAs

Ben Laurie ben at links.org
Mon Nov 28 14:24:46 EST 2011


On Mon, Nov 28, 2011 at 6:46 PM, Seth David Schoen <schoen at eff.org> wrote:
> Ben Laurie writes:
>
>> > How will the opt-out mechanism work so that it is not degraded by uses
>> > clicking through a warning?
>>
>> Don't quite understand the question: if you have opted out you
>> shouldn't get a warning, surely?
>
> I think that question was about unilateral client-side opt-out (users
> ignoring security warnings) rather than the organized deployment of a
> non-public CA.

Ah, well, I agree that having a reliable certificate infrastructure is
not the only problem to be solved.



More information about the cryptography mailing list