[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [caops-wg] Name Constraints - attempt at framing issues

To: "Von Welch" <vwelch@xxxxxxxxxxxxx>, "CAOPS-WG" <caops-wg@xxxxxxx>
Subject: RE: [caops-wg] Name Constraints - attempt at framing issues
From: "Cowles, Robert D." <rdc@xxxxxxxxxxxxxxxxx>
Date: Thu, 13 Oct 2005 19:23:09 -0700
Delivered-to: grdfm-caops-wg-outgoing@mailbouncer.mcs.anl.gov
Delivered-to: grdfm-caops-wg@mailbouncer.mcs.anl.gov
Sender: owner-caops-wg@xxxxxxx
Thread-index: AcXQZUKY47d2ufOvTPy8+sToc13R5QAANLTg
Thread-topic: [caops-wg] Name Constraints - attempt at framing issues

> 3) If a CA is compromised, given currently implementations, 
> this will  
> result in the compromise of all certificates issued by that CA. An  
> additional threat that a CA compromise would result in, is the  
> compromise of privileges bound to certificates issued by other CAs,  
> at relying parties that trust the compromised CA. Is this threat of  
> concern to us?
> 
> 


Von -- can you describe this? I can't figure out what this means.

BC

Follow-Ups:
- Re: [caops-wg] Name Constraints - attempt at framing issues
  - From: Von Welch

Prev by Date: [caops-wg] Name Constraints - attempt at framing issues
Next by Date: Re: [caops-wg] Name Constraints - attempt at framing issues
Previous by thread: Re: [caops-wg] Name Constraints - attempt at framing issues
Next by thread: Re: [caops-wg] Name Constraints - attempt at framing issues
Index(es):
- Date
- Thread