Re: Self-signed key verses Verisign or Thawte


Subject: Re: Self-signed key verses Verisign or Thawte
From: Mike Tibor (tibor@lib.uaa.alaska.edu)
Date: Wed Jul 17 2002 - 14:39:01 AKDT


On Wed, 17 Jul 2002, Mike Barsalou wrote:

> Can someone explain the advantage of having a Certificate from Verisign or
> Thawte over having one self-signed?

A key that's signed by a "real" CA won't cause peoples' browsers to
complain when the server presents it.

Technically speaking, a self-signed key provides all the protection of one
from Verisign or the others, and I use them all the time. The important
thing is to explain to first time users of the site in question what will
happen when they go there, and how to tell the browser to accept the cert.

Mike

-- 
Mike Tibor         Univ. of Alaska Anchorage    (907) 786-1001 voice
Network Technician     Consortium Library         (907) 786-6050 fax
tibor@lib.uaa.alaska.edu       http://www.lib.uaa.alaska.edu/~tibor/
http://www.lib.uaa.alaska.edu/~tibor/pgpkey  for PGP public key

--------- To unsubscribe, send email to <aklug-request@aklug.org> with 'unsubscribe' in the message body.



This archive was generated by hypermail 2a23 : Wed Jul 17 2002 - 14:39:03 AKDT