Hi Ben,
A couple of questions:
> The aim is to make it possible to detect such mis-issuance promptly
> through the use of a public log of all public issued certificates.
(a) Is this a log (repository) of just CA certs only, or does it
include every cert on the planet?
(b) Does it apply to publi
f a "Trust Framework" that will define the obligations of
all the participants in your ecosystem (eg. the CAs, DNS server
operators, ICANN, etc. etc.). Developing a Trust Framework for the
next-generation internet infrastructure would be a great leap forward
for the IETF. Otherwise, we just g
