Comment Re:Ridiculous And Totally Not Helpful (Score 1) 332
And yet this "It's gotta be perfect or it's gotta be nothing at all!" attitude is IMHO what has held crypto back a lot more than necessary.
Totally agree. That and the fact that corporate firewalls still block everything except port 80 and 443. Which demonstrates a fundamental lack of understanding about TCP/IP: the port number does not determine the application! There is absolutely no reason why one website couldn't support many different SSL hosts, all on different ports. Or many different websites.
The whole "certificate must be with a commercial provider" thing has been utterly ridiculous - I'm surprised that Google haven't created a free central certificate authority to be honest.