[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Certificate Policies (was Re: Trivial PKI Question)
Al Arsenault wrote:
>
> >From a technical standpoint, typically nothing prevents this. It's not
> commonly done because:
>
> a. There's more of a management problem; e.g., if the key is ever
> compromised for whatever reason, you have to track down ALL of the
> certificates it was bound to and revoke them; and
>
Each certificate that is issued to you brings along some kind of
liability (documents signed using that certificate are considered to be
signed by you). Therefore you'd be crazy not to keep track of all your
certificates/liabilities.
--
Margus