[cryptography] naming is hard as CAs now get to demonstrate
iang at iang.org
Sat Apr 13 05:26:26 EDT 2013
On 13/04/13 04:50 AM, dan at geer.org wrote:
> naming is hard as CAs now get to demonstrate
> Once ICANN approves the
> gTLD, the attacker has a legitimate certificate to go about performing
> man-in-the-middle attacks.
By waiting for ICANN approval of a namespace, CAs can now validly issue
name clashes within an approved space, and thus everyone can rest easy.
That makes sense.
More information about the cryptography