> From: Shumon Huque <shuque@xxxxxxxxxxxxx> > Any of them, whether by malice or by being tricked, can issue a > certificate for any of your services. Our security is basically as good > as the the CA with the laxest policies & worst security. Sounds like a poor attribute for a security architeture... Noel _______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf