Le 01/08/13 06:52, Jeremy Baron a écrit :
We (society, standards making bodies, etc.) need to do
more to reform
the current SSL mafia system. (i.e. it should be easier for a vendor
to remove a CA from a root store and we shouldn't have a situation
where many dozens of orgs all have the ability to sign certs valid for
any domain.)
I'm not sure how much we (Wikimedia) can do about that though.
Potentially similar minded foundations could form a new foundation that
would be their SSL authority :-] I am not sure whether it would be cost
effective though.
--
Antoine "hashar" Musso