robbat2: (Default)
robbat2 ([personal profile] robbat2) wrote2006-09-02 01:15 am
  • Add Memory
  • Share This Entry
Entry tags:

BarCamp Vancouver 2006 - Conferences notes - CACert - Robin Johnson

[Edit: Please see the corrections regarding the CACert Audit posted here.]

This is the outline version of my Powerpoint presentation, created using information from the CACert site and wiki.

Title: CACert - Verified SSL without paying Verisign
  • Facets
    • History
    • Verification
    • CACert point system
    • Integration
    • Assurance time!
  • History
    • Thawte
      • Web-of-Trust
      • Notaries
      • Things killed by Verisign
  • Verification
    • Why?
      • Identity implications
      • Legal requirements
      • Trying to avoiding Verisign-like screwups
    • PGP/GnuPG keysigning
      • Checking IDs
      • (Known-data|shared secret) exchange
    • CACert
      • Keysigning process + point allocation
  • CACert point system
  • Integration (why doesn’t it work in my browser right now?)
    • Already in most Linux distributions
    • IE: Microsoft requirements
      • WebTrust audit
        • $75K USD upfront, $10K USD yearly
      • Not likely to happen soon
    • Mozilla requirements
      • Audit by any suitable company
      • CACert audit by ‘We!’ funded by StartCom
  • Assurance time!
    • Quick guide to filling out the form
    • Circulate!
  • Add Memory
  • Share This Entry
(2 comments)

Post a comment in response:

This account has disabled anonymous posting.
If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting

If you are unable to use this captcha for any reason, please contact us by email at support@dreamwidth.org

 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.