[145395] in cryptography@c2.net mail archive
Re: A mighty fortress is our PKI
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Jul 26 23:05:58 2010
Date: Mon, 26 Jul 2010 22:55:52 -0400
From: "Perry E. Metzger" <perry@piermont.com>
To: Sampo Syreeni <decoy@iki.fi>
Cc: cryptography@metzdowd.com
In-Reply-To: <Pine.LNX.4.64.1007270537000.29042@lakka.kapsi.fi>
On Tue, 27 Jul 2010 05:40:07 +0300 (EEST) Sampo Syreeni
<decoy@iki.fi> wrote:
> On 2010-07-26, Perry E. Metzger wrote:
>
> > I think that you may be right -- the entire TLS PKI model may be
> > so horribly broken that, once you no longer have any real
> > security to speak of, simply sharing a cert among hundreds of
> > trust domains hardly harms anything further.
>
> I agree. But do we then have any quantitative research on how bad
> this sort of sharing really is, in excess of the basic
> cryptographic vulnerability?
I am not sure what quantitative measurement of vulnerability would
even mean. What units would said quantity be measured in?
Perry
--
Perry E. Metzger perry@piermont.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
