|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |
X-Original-To: cryptography@metzdowd.com X-Original-To: cryptography@metzdowd.com Date: Thu, 11 Aug 2005 19:07:20 -0400 (GMT-04:00) From: John Kelsey <kelsey.j@ix.netcom.com> Reply-To: John Kelsey <kelsey.j@ix.netcom.com> To: Peter Gutmann <pgut001@cs.auckland.ac.nz>, cryptography@metzdowd.com >From: Peter Gutmann <pgut001@cs.auckland.ac.nz> >Sent: Aug 11, 2005 7:42 AM >To: cryptography@metzdowd.com >Subject: How much for a DoD X.509 certificate? >$25 and a bit of marijuana, apparently. See: > http://www.wjla.com/news/stories/0305/210558.html > http://www.wjla.com/news/stories/0105/200474.html >Although the story doesn't mention this, the "ID" in >question was the DoD Common Access Card, a smart card >containing a DoD-issued certificate. To get a CAC, you >normally have to provide two forms of verification... in >this case I guess the two were photo ID of dead presidents >and empirical proof that you know how to buy weed. Ah, so this was more of an attribute certificate, then. And that the certificate was issued based partly on a nonstandard proof of possession protocol. (More specifically, "proof of possession with intent to distribute.") >Peter. --John --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
|
|
|
|
|
|
|
|
|
|
|
|
| home | help | back | first | fref | pref | prev | next | nref | lref | last | post |