[Info-vax] [OT] Zero trust software, was: Re: Rethinking DECNET ?
Simon Clubley
clubley at remove_me.eisner.decus.org-Earth.UFP
Tue Sep 2 20:34:45 EDT 2014
On 2014-09-02, David Froble <davef at tsoft-inc.com> wrote:
> Bill Gunshannon wrote:
>
>> Remember reading about how VeriSign gave keys to the NSA? I remember
>> asking people over 10 years ago why I, or anyone, should trust their
>> certificates over self-signed ones.
>
> We're using self generated certificates at our customer sites. I don't
> know why, since I don't get along very well with certificates. Also
> don't know why not.
>
> What are the advantages, and disadvantages, of using purchased
> certificates vs the ones you can generate yourself?
Purchased certificates allow you to load them into commercial and
open source products (ie: browsers) rather easily.
Self-signed certificates remove a possible attack vector for the NSA.
Simon.
--
Simon Clubley, clubley at remove_me.eisner.decus.org-Earth.UFP
Microsoft: Bringing you 1980s technology to a 21st century world
More information about the Info-vax
mailing list