Re: Certificate Authority of a secured P2P network

Kyle Hamilton Tue, 30 Aug 2005 09:04:21 -0700

If the certificates used within the network don't need to be trusted outside that network, then using a commercial CA is worthless and overly expensive. Just create a CA (using OpenCA or such), and issue certificates from that authority.

Otherwise, Thawte has a fairly-expensive program where they will embed specific certificate extensions into their end-user/client certificates.

Cheers,

-Kyle

On 30 Aug 2005 05:36:14 -0700, honzab <[EMAIL PROTECTED]> wrote:

Hi,

I'd like to ask for advice. We have been implementing structured P2P
network where all peers have to be authenticated each to other using
PKI.

We decided to use one Certificate Authority (certificate+private key)
to sign all certificates in our network. Every peer registred in our
network will obtain its own certificate signed by this CA and will
trust all certificates signed with this CA too.

I'd like to ask what companies ( e.g. VeriSign) are capable to issue
certificate for this purpose.

Thanks.

_______________________________________________
mozilla-crypto mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-crypto

Re: Certificate Authority of a secured P2P network

Reply via email to