[18165] in cryptography@c2.net mail archive
Re: The summer of PKI love
daemon@ATHENA.MIT.EDU (Stephan Neuhaus)
Fri Aug 12 11:56:50 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Fri, 12 Aug 2005 09:19:08 +0200
From: Stephan Neuhaus <neuhaus@st.cs.uni-sb.de>
To: cryptography@metzdowd.com
In-Reply-To: <42FA9CF4.6080805@garlic.com>
This is a multi-part message in MIME format.
--------------040401030202030101070503
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Anne & Lynn Wheeler wrote:
> http://www.infoworld.com/article/05/08/10/33OPstrategic_1.html
The page goes on to say:
"One reason for PKI's slow uptake has been the lack of two kinds of
portability. It hasn't been easy to move cryptographic keys from one
machine to another, or to use credentials issued by one institution at
another. But as we learned at the summit, there's been progress on both
fronts."
If I remember correctly, portability is not necessarily a thing to
strive for here, because it means that not only your certificates will
be transported from A to B, but also the corresponding private
information will have a tendency to leak all over the place.
Also, cross-certification (mentioned later in the article) is probably
hard to do right because it is an extension of trust that needs to be
carefully managed, if it can be done at all.
So, the optimism of the article's author aside, where *do* we stand on
PKI deployment?
Fun,
Stephan
--------------040401030202030101070503
Content-Type: text/x-vcard; charset=utf-8;
name="neuhaus.vcf"
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
filename="neuhaus.vcf"
begin:vcard
fn:Stephan Neuhaus
n:Neuhaus;Stephan
org;quoted-printable:Universit=C3=A4t des Saarlandes;Department of Informatics
adr;quoted-printable:;;Postfach 15 11 50;Saarbr=C3=BCcken;;66041;Germany
email;internet:neuhaus@st.cs.uni-sb.de
title:Researcher
tel;work:+49-681/302-64018
tel;fax:+49-681/302-64012
x-mozilla-html:FALSE
url:http://www.st.cs.uni-sb.de/~neuhaus
version:2.1
end:vcard
--------------040401030202030101070503--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
