On 06/06/17 22:26, Jakob Bohm wrote:
On 06/06/2017 22:08, Ryan Sleevi wrote:
Signing data is heavily reliant on CA competency, and that's in
unfortunately short supply, as the economics of the CA market make it easy to fire all the engineers, while keeping the sales team, and
outsourcing the rest.

Ryan, thankfully at least some CAs have some engineers.  :-)

Which is why I am heavily focused on allowing new technology to be be
developed by competent non-CA staff (such as IETF),

Jakob, if I interpret that literally it seems you're objecting to CA staff contributing to IETF efforts. If so, may I advise you to beware of TLS Feature (aka Must Staple), CAA, CT v1 (RFC6962) and especially CT v2 (6962-bis)?


Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online

dev-security-policy mailing list

Reply via email to