[caops-wg] Name Constraints - attempt at framing issues
Cowles, Robert D.
rdc at slac.stanford.edu
Thu Oct 13 21:23:09 CDT 2005
> 3) If a CA is compromised, given currently implementations,
> this will
> result in the compromise of all certificates issued by that CA. An
> additional threat that a CA compromise would result in, is the
> compromise of privileges bound to certificates issued by other CAs,
> at relying parties that trust the compromised CA. Is this threat of
> concern to us?
Von -- can you describe this? I can't figure out what this means.
More information about the caops-wg