Theodore Ts'o <tytso(_at_)mit(_dot_)edu> wrote:
Their dynamic with their users and the market is the same as with CA's
--- the market virtually guarantees a race to the bottom in terms of
quality and prices. So beyond replacing names like "Comodo" with "Go
Daddy", what benefit do you actually think would accrue? You'll still
be dealing with a self-service security model, probably using e-mail
based password recovery.
But if you care about security you can - with useful effect - choose a
registrar with better security processes, and you can use a registry lock
to prevent other registrars from undermining that security.
There isn't a way to prevent other CAs undermining your security, so
choosing a "more secure" CA has no useful effect. (Certificate
Transparency should help, though.)
Tony.
--
f.anthony.n.finch <dot(_at_)dotat(_dot_)at> http://dotat.at/
Forties, Cromarty: East, veering southeast, 4 or 5, occasionally 6 at first.
Rough, becoming slight or moderate. Showers, rain at first. Moderate or good,
occasionally poor at first.