Jean-Marc Desperrier wrote:
Tim Dierks wrote:
If you want to leverage CA competition, you have to offer them actual branding space: at least a name and possibly a logo which is visible next to the lock icon.
There a IETF/PKIX draft for including such extensions inside CA certificates.
Do you suggest the way to do that should be support for this draft ?
No, IMHO, better to identify the CA, and then look for the locally stored, Mozilla-derived package of branding materials for that CA. There is no need to extend the Cert. Mozilla would want to install with a little package of materials, indexed of the CA or the cert. It would be the Foundation's role to prepare that package, which should be easy, as the CA will do most of the work.
iang _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
