[WHOIS-WG] Fwd: Withdraw the gun database
Alan Greenberg
alan.greenberg at mcgill.ca
Tue Jan 22 14:52:10 UTC 2013
At 22/01/2013 04:13 AM, Patrick Vande Walle wrote:
>On 22-01-2013 01:07, Alan Greenberg wrote:
>
> > Would one of the free certificates from https://www.startssl.com/
> > suffice?
>
>Technically, any SSL client certificate would work, even free ones. How
>much trust you assign to a free certificate is a matter of policy.
>Commercial free certificates typically only authenticate the e-mail
>address, including that of Hotmail/Yahoo!/GMail users. Compare this with
>client certificates on-a-chip on government-issued ID cards, like there
>exists in many countries. They are also free, but ultimately trustable
>because the owner was verified face to face.
>
>Patrick
That was the point I was making in reply to your comment that an SSL
certificate "... is issued based on a proof of identity, thereby
discouraging spammers and all those wishing access to the data
anonymously for unclear purposes."
These days, an SSL certificate no longer gives you that level of assurance.
Alan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://atlarge-lists.icann.org/pipermail/whois-wg/attachments/20130122/3be81724/attachment.html
More information about the WHOIS-WG
mailing list