[Top] [All Lists]

Re: Certificate requests for encryption keys

1999-06-14 03:52:25
At 05:57 12/06/99, Peter Gutmann wrote:

Since the distribution now includes new people (ietf-smime) I'll give the 
Readers Digest version of what I said in an earlier message:

Thanks for that.

[...]   and since I'm pretty picky about 
doing things the way PKIX requires the only way they could get self-issued 
certs to work is to make everyone a CA.

Time for a dumb question, if I may.

What is the problem with this?  Unless I'm missing something (likely :-),
being a CA is no big deal security-wise.  I don't see any special trust
conferred on that basis alone.


<Prev in Thread] Current Thread [Next in Thread>