Re: Draft 11 of CA certificate policy

Gervase Markham Thu, 10 Mar 2005 10:07:05 -0800

Nelson B wrote:

SSL is site identity verification PLUS encrytion.  Site identity
verification, by itself, is NOT "good enough for banking".


Sure. Maybe I wasn't clear:

Site-ID-verified-by-DNSSec: "site identity verified" indicator
low-assurance cert: "site identity verified" indicator
high-assurance cert: lock and "site identity verified" indicator

Gerv
_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto

Re: Draft 11 of CA certificate policy

Reply via email to