- From: Amos Jeffries <squid3@treenet.co.nz>
- Date: Wed, 20 Nov 2013 12:19:46 +1300
- To: ietf-http-wg@w3.org
On 2013-11-20 11:15, Adrien de Croy wrote: > even if a cert is $0 it is not zero cost. > > Time and effort are not free. > > All these options involve an ongoing management/maintenance cost as > well > > And are we really proposing the internet should be built on certs from > free cert providers? How will they stay in business or the certs > remain free once the demand for free certs is multiplied by several > orders of magnitude? DANE. * generate your own CA certificate. * have your DNS provider sign it as part of your DNSSEC signed zone records * profit Payment (of lack of it) will be part of your contractual agreement with DNS provider and avoids the CA authority mess currently blighting trust in TLS. Amos
Received on Tuesday, 19 November 2013 23:20:12 UTC