17 Jul
2003
17 Jul
'03
6:30 p.m.
On Thursday, Jul 17, 2003, at 13:48 Europe/Amsterdam, Randy Bush wrote:
someone getting at the root CA key at an RIR There would still be the very similar issue of someone getting at the certificate that the RIR bought from the third party CA.
no, as that would not be installed in my browser to be absolutely trusted.
If the certificate that signs other certificates is compromised, the trust in the signed certificates is gone because you won't be able to know if new certificates have been generated by non-legitimate parties. Joao