ietf-asrg
[Top] [All Lists]

Re: [Asrg] Re: E-postage

2004-04-22 10:35:13
"Tom Thomson" <tthomson(_at_)neosinteractive(_dot_)com> wrote:
Yakov Shafranovich <research(_at_)solidmatrix(_dot_)com> wrote:

Today's CAs do not revoke certificates for
policy reasons but that can probably be changed.

Why do you think that can be changed?  The CAs are in the CA business to
make money.

Nobody is going to trust an irrevocable mailing certificate, so nobody
is going to buy them.

In any case, revocation per se isn't strictly necessary.  For
instance, issue (at a noticeable price) one-day certificates, which
can be renewed a day at a time for free if they aren't used to sign
spam.  Non-spammers pay a one-time fee (refundable, even); spammers
lose their deposit for a single day of spamming (and even that runs
into BLs of "don't trust this certificate" which could be run by third
parties).

Seth

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg



<Prev in Thread] Current Thread [Next in Thread>