Clifford Heath wrote:
> No, the problem is getting your root CA certificate included in the browsers.
> Manual CA cert installation into each browser doesn't cut it when you're
> trying to persuade a business to use one of your server certs.
> Liability is a cost issue - you simply negotiate and buy insurance for it.
I do not agree. Liablility is esablished by law in many countries by now and the
trend is to ask for minimum technical requirements: theese includes additional
costs, that's true, but mainly a resource (human) management problem. Take a look
at the GUIDeS project about CAs related problems:
http://www.regione.emilia-romagna.it/guides/
> So when is OpenCA going to bite these particular two bullets?
When we will be ready for them, but I think that it is very difficult for us to
even think about solving them because them are country and organization related
and we do, currently, provide only a software ... :-D
C'you,
Massimiliano Pala ([EMAIL PROTECTED])
S/MIME Cryptographic Signature
