On 10/24/2008 05:07 PM, Paul Hoffman:
Robert: you are already in that business by distributing trust anchors that you have (sometimes) vetted. You are a CA without signing anything, just by distributing a trust anchor repository.
Kind of....Mozilla doesn't certify really anything, but extends some trust (to the user). The "trust thing" happens here, so many times mentioned incorrectly in relation to web sites and EE certificates.
Even though one can look at it as you described, I'd not state it explicitly this way - minor point however.
-- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: [EMAIL PROTECTED] Blog: https://blog.startcom.org _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto