I should know better than dive back into this discussion... On 13 jul 2010, at 18:05, Phillip Hallam-Baker wrote: > Con: There is no cost to generating the cert, the cert can be > generated after the device ships. Thus there is no degree of > accountability established in the presentation of a cert. If a user > abuses the network (e.g. to send spam) there is no bar to prevent them > ditching the banned cert and re-applying for another. The cost of generating the cert can be more than just generating the cert. For instance, it could be made necessary to have the cert signed by someone who is presumably trustworthy. Or they need to build up some reputation. _______________________________________________ Ietf mailing list Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf