[clue-tech] CAcert issues
David Anselmi
anselmi at anselmi.us
Wed Mar 30 20:21:58 MST 2005
Angelo Bertolli wrote:
[...]
> The other thing about do-it-yourself CA is that without a third
> party, there's really no point int having a CA anyway.
Nonsense. You need a CA to create certificates, which browsers use for
authentication. You can use a third party CA for assurance or some
other mechanism. For casual browsing they are probably identical and
for serious browsing a third party is more likely to be inadequate.
SSH, which uses the same public key crypto as TLS/SSL *doesn't* use
certificates at all. It can still provide assured authentication, but
through a different mechanism.
Dave
More information about the clue-tech
mailing list