Chapter 17. Backend integration 437
Disadvantages of using private CAs are:
Using a private CA requires more administrative overhead.
When you use a private CA, each client application that uses SSL to
communicate with a server must obtain and store a local copy of the private
CA's public certificate. Depending on the number of clients in your network,
this may result in a higher management cost than purchasing certificates from
a public CA whose CA certificate is often built into the client's certificate
database.
Digital certificates from private CAs are best for:
Deployment on a corporate intranet.
Using locally issued certificates allows you to more tightly control who has
certificates and what they can access with those certificat ...