Liviu Chircu liviu at opensips.org
Tue Dec 3 08:48:43 EST 2019

On 03.12.2019 15:39, volga629 via Users wrote:
> Thank you reply, so any bad actor can't use as example with self sign 
> certificates ?   So digital signature must be produced from well known 
> authorized CA certificate key pair ?
Correct.  The bad actor's self-signed X509 STIR/SHAKEN certificate can 
be easily
distinguished from an officially recognized one (exactly like HTTPS certs).
> Can you point on one of the well know CA authority which authorized 
> volga629
The last known info I have is this [1] "call for certification 
authorities", back in
July.  I'm not sure whether the deadline is over, or if any CAs have 
started popping up,
but from what I just searched, things haven't progressed much.



Liviu Chircu
OpenSIPS Developer

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensips.org/pipermail/users/attachments/20191203/96963ddb/attachment-0001.html>

More information about the Users mailing list