This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database

Previous message (by thread): [db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database
Next message (by thread): [db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Randy Bush randy at psg.com
Wed Jul 16 16:28:50 CEST 2003

> What I now heard was that the ssl connections will be strengthened by 
> adding client side certificates which can be used for authentication. 
> This might of course rise questions about the use of third-party-CA for 
> the certificates, but this is (as clarified in this mail below) 
> resolved by having the RIR being an CA by itself.

so i am supposed to install the RIRs' certs in my browser as root
CAs and ignore the big hole for attack this opens?  i already
*remove* a bunch of root CAs when i bring up a new browser.  this
is the new internet.  get paranoid.

let the RIRs spend a few of the bucks they have getting their certs
signed by a well-trusted root CA.

randy

Previous message (by thread): [db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database
Next message (by thread): [db-wg] Re: [ncc-services-wg] X.509 authentication in the RIPE Database

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ db-wg Archives ]