[17864] in cryptography@c2.net mail archive
Re: ID "theft" -- so what?
daemon@ATHENA.MIT.EDU (Dan Kaminsky)
Wed Jul 13 22:14:44 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 13 Jul 2005 15:31:17 -0700
From: Dan Kaminsky <dan@doxpara.com>
To: "Perry E. Metzger" <perry@piermont.com>
Cc: John Denker <jsd@av8n.com>, cryptography@metzdowd.com
In-Reply-To: <87vf3elm17.fsf@snark.piermont.com>
>This is yet more reason why I propose that you authorize transactions
>with public keys and not with the use of identity information. The
>identity information is widely available and passes through too many
>hands to be considered "secret" in any way, but a key on a token never
>will pass through anyone's hands under ordinary circumstances.
>
>
>
It's 2005, PKI doesn't work, the horse is dead. The credit-card sized
number dispensers under development are likely to be what comes next.
Amusingly, your face is an asymmetric authenticator -- easy to
recognize, hard to spoof.
--Dan
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
