[cabfpub] Use of wildcard certificates by cloud operators
Richard@WoSign
richard at wosign.com
Sun May 25 05:04:56 UTC 2014
For EV, this is high trusted cert that if allow wildcard, then too many fraud website become green. For example, if the domain: corp.cn can get EV wildcard, then the fraud site https://apple.corp.cn will become green.
Best Regards
Richard at WoSign
> On 2014年5月25日, at 3:02, "Geoff Keating" <geoffk at apple.com> wrote:
>
>
>> On 23 May 2014, at 8:22 pm, Richard at WoSign <richard at wosign.com> wrote:
>>
>> For Wildcard certificate, I think we must limit to OV SSL only. But I found some CA issued wildcard SSL to DV, this is a big problem.
>
> This has come up before. I never really understood why OV would make wildcard certificates better. For example, if OV would be better, wouldn't EV be better still?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 7396 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/public/attachments/20140525/64a11ae7/attachment-0001.p7s>
More information about the Public
mailing list