Hi Tom
> Aside from StartCom (free) most CAs have roughly the same price and
> service. Since service is equivalent, you're free to choose a CA
> based on your political opinion, and not worry about missing out on
> 'features'. It's basically like voting in an election - elections are
> won by tens or hundreds of thousands of votes, so it seems like one
> vote doesn't matter. But it can add up.
Not sure if you know this one, but this article paints a somewhat more
complex picture of the HTTPS economics. In particular, companies buy
from the big players because, alas and behold, they're too big to fail
and will never be removed from root stores:
@INPROCEEDINGS{Asghari2013,
author = {Asghari, Hadi and van Eeten, Michel J. G. and Arnbak, Axel
M. and van Eijk, Nico A. N. M.},
year = {2013},
month = {March},
title = {Security Economics in the {HTTPS} value chain},
location = {Washington, D.C., USA},
booktitle = {Proc. 12th Ann. Workshop on the Economics of Information
Security (WEIS 2013)},
}
Ralph
--
Ralph Holz
I8 - Network Architectures and Services
Technische Universität München
http://www.net.in.tum.de/de/mitarbeiter/holz/
Phone +49.89.289.18043
PGP: A805 D19C E23E 6BBB E0C4 86DC 520E 0C83 69B0 03EF
--
Liberationtech is a public list whose archives are searchable on Google.
Violations of list guidelines will get you moderated:
https://mailman.stanford.edu/mailman/listinfo/liberationtech. Unsubscribe,
change to digest, or change password by emailing moderator at
compa...@stanford.edu.
