On 6/11/10 12:25 AM, Ross Walker wrote: > > If we could start the whole certificate thing over I think it would > have been better to have a trust "registrar" rather then a bunch of > semi-trusted authorities. Then any corporation can create their own > CA and register that CA with a registrar with proof of identity, > then manage their own certificates and CRLs. Now this is an excellent idea! It would be vastly superior to the current situation, though a serious challenge to the price-gouging of many CAs. Regards, Ben -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 259 bytes Desc: OpenPGP digital signature URL: <http://lists.centos.org/pipermail/centos/attachments/20101106/cb9f8bc6/attachment-0005.sig>