Von Welch writes:
1) What CAs do we wish to consider as potential issuers for our community? Is it just "Grid CAs" (by that I mean CA we can reasonably except to adhere to best practices as specified by GGF WGs) or do we want to also consider CAs that we have no reasonable expectation of being able to impact their policies or procedures (e.g. commercial CAs) as potential issuers for our community as well?
We also want to consider CAs that we have no reasonable expectation &c such as commercial CAs, federal bridge CAs &c. Note: this is counter to my obvious self interest.
2) Do we believe that during normal operation the CAs indicated in
yes - I'm not completely sure I understand this question
3) If a CA is compromised, given currently implementations, this will
This one is over my head.