Matthew Hardeman via dev-security-policy <dev-security-policy@lists.mozilla.org> writes:
>What if the various user agents' root programs all lobbied ICANN to impose a >new technical requirement upon TLD REGISTRY operators? That was actually debated by one country, that whenever anyone bought a domain they'd automatically get a certificate for it included. Makes perfect sense, owning the domain is a pretty good proof of ownership of the domain for certificate purposes. It eventually sank under the cost and complexity of registrars being allowed to operate CAs that were trusted by browsers [0]. Peter. [0] Some details simplified, and identities protected. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy