[15210] in cryptography@c2.net mail archive
Re: Verisign CRL single point of failure
daemon@ATHENA.MIT.EDU (Rich Salz)
Wed Mar 31 22:51:20 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 9 Jan 2004 21:52:02 -0500 (EST)
From: Rich Salz <rsalz@datapower.com>
To: Peter Gutmann <pgut001@cs.auckland.ac.nz>
Cc: "rah@shipwright.com" <rah@shipwright.com>,
"cryptography@metzdowd.com" <cryptography@metzdowd.com>
In-Reply-To: <200401100216.i0A2GRE08339@cs.auckland.ac.nz>
> I'm not sure what the "no longer
> dynamically changing" means, I assume they've made it even worse by giving
> it a much larger expiry period, so your online check gives you the status
> from last year instead of last week.
It means that they learned the lesson when the erroneously issued
two MSFT certificates:
In the future, VRSN patches will be issued as MSFT
software updates.
--
Rich Salz Chief Security Architect
DataPower Technology http://www.datapower.com
XS40 XML Security Gateway http://www.datapower.com/products/xs40.html
XML Security Overview http://www.datapower.com/xmldev/xmlsecurity.html
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
