I think this thread has reached a natural terminus. I mean this thread about revocation, not all discussion about CA policy.
It's been shown that CA-issued certs have the advantages of being revocable, with two separate revocation mechanisms in place, and with the ability to revoke remaining even if/when the cert owner loses his only/last private key for the cert.
Let's leave this point, and move on.
-- Nelson B
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
