On Nov 1, 2012, at 11:52 AM, Rob Stradling <[email protected]> wrote:
> On 01/11/12 16:46, Paul Hoffman wrote: >> On Nov 1, 2012, at 9:29 AM, Phillip Hallam-Baker <[email protected]> wrote: >> >>> This is about barely capable sysadmins. >>> >>> Different problem. >> >>> From the perspective of the relying party (me, caring about making a secure >>> connection to my bank), the problems are indistinguishable. A CA who >>> retains a sysadmin who is barely capable > > Paul, this is about barely capable sysadmins _at your bank_, not at the CA. > > (Ben wrote "The process of participating in CT for a _server operator_ is...") OK, maybe I'm confused here, or maybe you are. If my bank has a certificate issued by a CA who is actively participating in CT, there is no requirement on the bank at all, correct? --Paul Hoffman _______________________________________________ therightkey mailing list [email protected] https://www.ietf.org/mailman/listinfo/therightkey
