[15496] in cryptography@c2.net mail archive
Re: Yahoo releases internet standard draft for using DNS as public key server
daemon@ATHENA.MIT.EDU (martin f krafft)
Fri May 28 21:17:41 2004
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Sat, 29 May 2004 02:40:26 +0200
From: martin f krafft <madduck@madduck.net>
To: cryptography@metzdowd.com
Mail-Followup-To: cryptography@metzdowd.com
In-Reply-To: <40B76EA6.3060904@nma.com>
--pf9I7BMVVzbSWLtt
Content-Type: text/plain; charset=iso-8859-15
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
also sprach Ed Gerck <egerck@nma.com> [2004.05.28.1853 +0200]:
> It's "industry support". We know what it means: multiple,
> conflicting approaches, slow, fragmented adoption --> will not
> work. It would be better if the solution does NOT need industry
> support at all, only user support. It should use what is already
> available.
While I fundamentally agree, a user-side approach will not work for
two reasons, at least:
- The technology is too complex to be grasped. users may be able
to select encryption in their GUI, but they fail to understand
the consequences. This is especially problematic on the receiver
side, because no standard user knows how to handle a BAD
SIGNATURE alert.
- The infrastructure is not there. Two standards compete for email
cryptography, and both need an infrastructure to back them up.
Unless the governments do not settle on one standard and provide
the necessary infrastructure, such as signing keycards or
pocket devices capable of stream en/decryption, encryption is
not going to be standard.
If everyone and their mother is supposed to use cryptography, then
the two points need to be addressed. And unless everyone (and their
mother) uses cryptography consistently, email is not going to be
safe.
--=20
martin; (greetings from the heart of the sun.)
\____ echo mailto: !#^."<*>"|tr "<*> mailto:" net@madduck
=20
invalid/expired pgp subkeys? use subkeys.pgp.net as keyserver!
=20
the unix philosophy basically involves
giving you enough rope to hang yourself.
and then some more, just to be sure.
--pf9I7BMVVzbSWLtt
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFAt9v6IgvIgzMMSnURAmb6AJ9C5+rjUi3h5sm8Wjr1xVo/xplIWwCgnjFD
2kMm795tpUrBM15xbjtGD/0=
=eTwD
-----END PGP SIGNATURE-----
--pf9I7BMVVzbSWLtt--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
