We are looking to renew our cert (coming up on expiration), which is signed by one of the Thawte CA's that is being deprecated. At the time we selected that CA because it was widely supported natively or was pre-installed in nearly all platforms / operating systems we see on our campus.
Our two main concerns are compatibility (we've seen over 200k distinct devices authenticated onto our 802.1x WiFi over the past 6 months) and longevity (seems most only offer up to 3 years). After just a cursory check, it looks like a lot of sites dealing with financial transactions use Verisign, while some of the popular social media sites use DigiCert. Google has their own intermediate CA issued by GeoTrust. I would expect any of those would be very widely supported, but am curious what others' experiences are.
Thanks, Jason ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
smime.p7s
Description: S/MIME Cryptographic Signature
