Free x.509 Certs (WAS Re: NEVER open attachments)

[Jeremiah Cornelius <jeremiah () nur net>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Saturday 20 March 2004 19:16, Bill Royds wrote:
> So the value of signing your messages  doesn't really scale.
> That is why S/MIME is used by most commercial MUA's. Even though you have
> to pay for the certificate, you can pretty well guarantee that the public
> key will be available when one needs to verify the message.

You don't have to pay for the certificate to use S/MIME.  You don't have to be 
self-signed for free x.509 personal certs.

I have been using the Comodo issued, InstantSSL certs for S/MIME and document 
encryption/verification.  There has never been a hitch in validating the 
certification path.

Thawte has free personal certificates as well.  They used to implement a 
strange "web of trust", where you could visit a notary to validate your 
identity.  PITY.

IPSCA has free personal certs too.  No experience with them, but they are in 
the Mozilla/IE root cert stores.

http://www.instantssl.com/ssl-certificate-products/free-email-certificate.html?currency=USD&region=North%
20America

https://www.thawte.com/cgi/enroll/personal/step1.exe

http://certs.ipsca.com/Products/SMIME.asp



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAXbtDJi2cv3XsiSARAoE7AJ4j0TP39meu1TfR3VIcDZyM3USnBwCg+xu0
ASbi1i8T0gGo4Wo0msdJMiw=
=pA7r
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html