At 05:57 12/06/99, Peter Gutmann wrote:
Since the distribution now includes new people (ietf-smime) I'll give the
Readers Digest version of what I said in an earlier message:
Thanks for that.
[...] and since I'm pretty picky about
doing things the way PKIX requires the only way they could get self-issued
certs to work is to make everyone a CA.
Time for a dumb question, if I may.
What is the problem with this? Unless I'm missing something (likely :-),
being a CA is no big deal security-wise. I don't see any special trust
conferred on that basis alone.