On Monday 12 October 2009 12:12:22 Ian G wrote: > On 12/10/2009 12:13, Rob Stradling wrote: <snip> > > That CA clearly fell short of this requirement. > > It is ... surely a thing of customer <--> CA relationship. If there are > insufficient resources, the customer experience will be crap.
Which "customer" are you referring to? It's the relying party (i.e. a human using a browser) who are most likely to suffer when a CA's OCSP Responder isn't working well. And that relying party will probably either blame their browser or the operator of the website which is experiencing the problem. I think the AMO case is likely to be the exception rather than the rule. The operator of the website (Mozilla) was technically knowledgeable enough to spot the source of the problem (GlobalSign's OCSP Responder). > If the market isn't working here, then there is something wrong with the > market, and creating a requirement in a dry dusty document I'm not sure how a PDF file can gather dust. ;-) > is pretty close to the worst thing to do. Ian, what do you think would be the best thing to do? > iang > _______________________________________________ > dev-security mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security -- Rob Stradling Senior Research & Development Scientist C·O·M·O·D·O - Creating Trust Online Office Tel: +44.(0)1274.730505 Office Fax: +44.(0)1274.730909 www.comodo.com Comodo CA Limited, Registered in England No. 04058690 Registered Office: 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Manchester M5 3EQ This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender by replying to the e-mail containing this attachment. Replies to this email may be monitored by Comodo for operational or business reasons. Whilst every endeavour is taken to ensure that e-mails are free from viruses, no liability can be accepted and the recipient is requested to use their own virus checking software. _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
