[144696] in cryptography@c2.net mail archive
Re: Client Certificate UI for Chrome?
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Thu Aug 6 10:46:22 2009
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: benl@google.com, cryptography@metzdowd.com
In-Reply-To: <1b587cab0908050658s4f247bf3j8428d3b7b005a5c6@mail.gmail.com>
Date: Fri, 07 Aug 2009 00:49:17 +1200
Ben Laurie <benl@google.com> writes:
>So, I've heard many complaints over the years about how the UI for
>client certificates sucks. Now's your chance to fix that problem -
>we're in the process of thinking about new client cert UI for Chrome,
>and welcome any input you might have. Obviously fully-baked proposals
>are more likely to get attention than vague suggestions.
This is predicated on the assumption that it's possible to make certificates
usable for general users. All the empirical evidence we have to date seems to
point to this not being the case. Wouldn't it be better to say "What can we
do to replace certificates with something that works?", for example TLS-SRP
or TLS-PSK?
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
