|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |
From: Peter Gutmann <pgut001@cs.auckland.ac.nz> To: b.m.m.d.weger@TUE.nl, Nicolas.Williams@sun.com Cc: cryptography@metzdowd.com, pgut001@cs.auckland.ac.nz In-Reply-To: <20090714212320.GD1274@Sun.COM> Date: Wed, 15 Jul 2009 17:05:05 +1200 Nicolas Williams <Nicolas.Williams@sun.com> writes: >This goes to show that we do need a TA distribution protocol (not for the >web, mind you), and it needs to use PKI -- a distinct, but related PKI. ... and now you have two (probably unsolveable) problems instead of one. In addition because the second problem virtually never occurs, it'll receive little or no evaluation in the real world, and will either not work when it's needed or will break when it's not needed, allowing your main PKI to be compromised through it. Peter. --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |