Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
themihai
on Sept 7, 2016
|
parent
|
context
|
favorite
| on:
CA:WoSign Issues
Hopefully one day we will replace CAs with something decentralized(i.e based on DNSSEC). CAs make sense only if you need an EV certificate.
Panino
on Sept 7, 2016
[–]
DNSSEC is
not
decentralized -- it follows a
strict
hierarchy from ICANN => TLDs (world governments) => you.
DNS is
distributed
, not decentralized.
themihai
on Sept 8, 2016
|
parent
[–]
Right... but at least you cut off the CA from the scheme. You depend on ICANN -> TLD anyway.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
