Gervase Markham wrote:
Robert Sayre wrote:
Will we see Extended Extended Validation Certificates in a few years,
after CAs sell too many EV certs? Is there an incentive for them not
to do that?
What do you mean by "too many" EV certs? Do you mean "if they start
selling EV certs to the wrong people"?
It seems like EV certs are claiming to provide the sort of protection
regular certificates were initially supposed to provide. Could you
explain why this is not a bait and switch, because it looks that way to me.
Surely we should support them, just like we do normal certificates, but
I don't see why we should present them any differently in the UI.
- Rob
_______________________________________________
dev-security mailing list
dev-security@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security
