Frank Hecker wrote:My conclusion is that outside of the top CAs we could remove any CA in our list and the immediate consequences would be pretty limited.
Given the very interesting data you've shown; I'd concur. I was thinking of the big ones when I made that comment.
Understood. However as Nelson notes (and I agree with him) the big CAs have not historically been a source of problems, and hence I suspect the likelihood of having to remove one of their certs is probably pretty low.
Frank
-- Frank Hecker [EMAIL PROTECTED] _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
