Eddy Nigg (StartCom Ltd.) wrote:
Well, I consider this the minimal technical validation required.
Identity/Organization validation for S/MIME implies prove of ownership
of the email account/address. Thunderbird doesn't validate the common
name or organization field, but the email address.
Frank Hecker:
Eddy Nigg (StartCom Ltd.) wrote:
Considering for a minute your statement above, what are the CAs in
question doing in order to guaranty domain/email ownership? What are the
controls in place which let them rely on identity validation only?
This is where I think we need
Eddy Nigg (StartCom Ltd.) wrote:
Fank, I suggest that you balance what impact it has on the relying
parties in first place (e.g. the users of your software) before you take
care about the effects of the CA.
In case it wasn't clear, my primary concern is for end users of
Thunderbird who
Nelson B Bolyard:
Eddy, I'm finding it difficult to track exactly which certs are the
subject of discussion here. You and Frank seem to be discussing
other certs than the DigiNotar certs here.
We are discussing the CA roots of DigiNotar and Staat der Nederlanden
Root CA. The first is due
4 matches
Mail list logo