I know every CA already has a disaster plan in place to maintain certain level of continuity in case of failure, weather and etc. But is there a global contingency plan in place if a critical vulnerability was found in one of the key systems which required immediate change over to a different key-size, signature algorithm or etc.
Could every CA right now in operation handle such a scenario and reissue nearly every certificate (if necessary) immediately? How long would it take? Could CT handle such an influx of requests? The goal is to achieve 100% secure web and I feel that a global contingency plan is needed in case of the unlikely event of this scenario ever happens. James
_______________________________________________ Public mailing list [email protected] https://cabforum.org/mailman/listinfo/public
