[145400] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: A mighty fortress is our PKI

daemon@ATHENA.MIT.EDU (Peter Gutmann)
Tue Jul 27 10:39:33 2010

From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: iang@iang.org, paul.tiemann.usenet@gmail.com
Cc: cryptography@metzdowd.com, pgut001@cs.auckland.ac.nz
In-Reply-To: <4C4E4327.8040200@iang.org>
Date: Wed, 28 Jul 2010 02:23:07 +1200

Ian G <iang@iang.org> writes:

>**  But talking about TLS/SNI to SSL suppliers is like talking about the
>lifeboats on the Titanic ... we don't need it because SSL is unsinkable.

... or talking to PKI standards groups about adding a CRL reason code for
"certificate issued in error" (e.g. to an imposter).  This was turned down
because CA's never make mistakes, so there's no need to have such a reason
code.

Peter.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[145400] in cryptography@c2.net mail archive

Re: A mighty fortress is our PKI

daemon@ATHENA.MIT.EDU (Peter Gutmann)Tue Jul 27 10:39:33 2010

daemon@ATHENA.MIT.EDU (Peter Gutmann)
Tue Jul 27 10:39:33 2010