- From: Jeffrey Walton <noloader@gmail.com>
- Date: Tue, 23 Apr 2013 22:41:10 -0400
- To: Anders Rundgren <anders.rundgren@telia.com>
- Cc: "public-webcrypto-comments@w3.org" <public-webcrypto-comments@w3.org>
On Tue, Apr 23, 2013 at 10:19 PM, Anders Rundgren <anders.rundgren@telia.com> wrote: > The problem in a nutshell is that the use-case for consumer-PKI only exists outside of the US while the platforms essentially are all of US origin. > What is consumer-PKI? A PKI that relies on a commercial CA? Or the browser's use of commercial CAs and subordinates? Or perhaps a application by a commercial company whose PKI uses its own private CA? PKI deployments are world wide. The details and profiles are designed by committee in documents such as RFC 5280. The agenda for a commercial CA is pretty clear: maximize earnings, minimize warranty, and shed liability through license agreements and Certification Practice Statement (CPS). Jeff
Received on Wednesday, 24 April 2013 02:41:37 UTC