The question would be better phrased, can one buy SSL certificates
for alternative (non-sanctioned) TLDs.
You cannot for technical (not policy) reasons via Geotrust/Equifax
QuickSSL, as the purchase process requires email validation to that
domain. I doubt their mail server will recognize and route email properly
to alternative TLDs.
There is also the possibility of adding more than one Common Name to
a certificate (e.g. both www.microsoft.com and www.microsoft.info).
I successfully did this using CryptoAPI, self-signed and loaded into IIS,
tested it with IE 5+. It worked fine without errors/warnings on either
common name.
I did not test it further (Netscape, other web servers, etc), nor am I
certain
a CA would sign such a certificate. I tried reading the X.509 specification
suite to see if this was against spec, but I gave up (what a mess!).
Adam
{for personal email, replace nospam with adam}
----- Original Message -----
From: "Lists" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, April 01, 2003 12:47 AM
Subject: Allowable TLDs for SSL certs?
> Can one purchase an SSL cert for a .business domain ?
> I would think NOT via the usual suppliers at least?
>
> Jo Shea
