[TrustBar] [Fwd: Re: Low assurance SSL CAs]
Steve Roylance
steve at comodo.com
Tue Feb 22 21:29:30 EST 2005
Dear all,
I guess you'll see this as throwing the cat(s) among the pigeons, but
it's got the potential to benefit us all with a far faster time to
market for the trustbar.
Comodo has developed a series of security tools on the back of patent
applications made from 1998 onwards. In some cases it may be possible
the planned changes to the moz trustbar could infringe some of those
patents but that discussion is not the purpose of this e-mail.
I'd like to propose that you look at our proof of concept solutions with
a view to Comodo providing some of our existing infrastructure and
solutions to the trustbar cause. As we've already accumulated the
databases, made the patent applications and delivered a portfolio of
proven tools for the IE platform, I would hope that we could really
bring this knowledge to good effect in the new trustbar.
I hope Nelson will vouch for our polices as a CA and our quest for high
level assurance SSL issuance etc from past discussions.
I've attached a white paper that will be going out to as many places as
we can push it on this subject, but focusing mainly on the content
attacks wrought by the Phishing scams. We've looked to the next stage
in the evolution of browsers and seen what we need to do.
If you have access to IE (:-0) and can download the plugin products and
look at the related sites I hope you'll see a good deal of the work has
already been done.
I really look forward to the feedback!
www.trusttoolbar.com
www.vengine.com
www.Idauthority.com
www.trustlogo.com
Kind Regards
Steve Roylance
Technical Marketing Director - Comodo
-----Original Message-----
From: trustbar-bounces at mozdev.org [mailto:trustbar-bounces at mozdev.org]
On Behalf Of Ian G
Sent: 22 February 2005 15:51
To: Duane
Cc: trustbar at mozdev.org; Ahmad Jbara; Amir Herzberg
Subject: Re: [TrustBar] [Fwd: Re: Low assurance SSL CAs]
Duane wrote:
>On Tue, February 22, 2005 20:15, Amir Herzberg said:
>
>
>
>>I am very supportive of your first proposal. In fact, what TrustBar
>>already does is allow the user to select name/logo for each CA (by
>>default this is the name of the CA, or logo if it is a CA we took the
>>trouble of putting the logo in our code - currently only for VeriSign
>>but we hope to add few more soon; and it is very easy to select a logo
>>by the user). This already allows user to distinguish between more
>>trusted and less trusted identifications (e.g. by verisign cf. to by
>>some of the less careful CAs - and many CAs make very limited
>>validations).
>>
>>
>
>Any chance of adding a logo for CAcert by default as well? :)
>
>
Duane! Don't ask for these things... Just do them!
Download the plugin, figure out what size logo is
applicable by copying the VeriSign sizes, and send
the appropriate set to Amir and Ahmad.
:-) In all seriousness, Amir and Ahmad haven't the
time to create a policy as to how to do all this, so
do the heavy lifting for them; get your logos over
to them, and help them by trialling the TrustBar
so configured with your users.
[ I suppose someone has to figure out how to bind the
logo to the root cert. Some sort of sig process would
be nice. It's not essential, it can be simulated by the
product distributor just including them in the package
(now WebTrust, later on Mozilla). Something for the
future. ]
iang
--
News and views on what matters in finance+crypto:
http://financialcryptography.com/
_______________________________________________
TrustBar mailing list
TrustBar at mozdev.org
http://mozdev.org/mailman/listinfo/trustbar
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Identity Assurance on the Internet - A Comodo White
Paper.pdf
Type: application/pdf
Size: 1237397 bytes
Desc: not available
Url : http://mozdev.org/pipermail/trustbar/attachments/20050222/bba679ab/IdentityAssuranceontheInternet-AComodoWhitePaper-0001.pdf
More information about the TrustBar
mailing list