[cabfpub] Use of wildcard certificates by cloud operators
richard at wosign.com
Sat May 24 22:04:56 MST 2014
For EV, this is high trusted cert that if allow wildcard, then too many fraud website become green. For example, if the domain: corp.cn can get EV wildcard, then the fraud site https://apple.corp.cn will become green.
Richard at WoSign
> On 2014年5月25日, at 3:02, "Geoff Keating" <geoffk at apple.com> wrote:
>> On 23 May 2014, at 8:22 pm, Richard at WoSign <richard at wosign.com> wrote:
>> For Wildcard certificate, I think we must limit to OV SSL only. But I found some CA issued wildcard SSL to DV, this is a big problem.
> This has come up before. I never really understood why OV would make wildcard certificates better. For example, if OV would be better, wouldn't EV be better still?
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 7396 bytes
Desc: not available
Url : https://cabforum.org/pipermail/public/attachments/20140525/64a11ae7/attachment.bin
More information about the Public