[foaf-protocols] free certificate authority?

Joe Presbrey presbrey at gmail.com
Tue May 4 01:07:21 CEST 2010


FYI

On Mon, May 3, 2010 at 6:52 PM, StartCom CertMaster (Eddy Nigg)
<certmaster at startcom.org> wrote:
>   W3C utilizes the subjectAltName field to
> point to my WebID URI [1] as part of FOAF+SSL [2].  A peer can verify
> that the data at my WebID URI contains the public key of the client
> certificate allowing me to revoke my own certificate and a bunch of
> other cool things.
>
>
> Well, revocations are handled at the CA obviously for the certificate itself.
>
> More specif on this subject, in the past we cooperated for example with the XMPP Foundation where we provided an intermediate CA exactly for similar reasons. Unfortunately this is not a free service, but it enabled XMPP to advance the security of their networks immensely and today StartCom issues XMPP compliant certificate directly from StartSSL.
>
> Since this approach worked extremely well, it might also for FOAF+SSL in case there is a party willing to engage for that. See also http://www.startssl.com/?app=5
>
> Regards
>
> Signer:  Eddy Nigg, COO/CTO
>   StartCom Ltd.
> Twitter:  Follow StartSSL™
> XMPP:  help at startcom.org
> Phone:  +1.213.341.0390

On Mon, May 3, 2010 at 6:18 PM, Nathan <nathan at webr3.org> wrote:
>> Thanks for the pointer. I have signed up and retrieved for my own
>> personal cert too.  How do we get him to let us append a subjAltName?
>> :D
>
> good q, I thought the very same!


More information about the foaf-protocols mailing list