[8124] in cryptography@c2.net mail archive
Re: Public Key Infrastructure: An Artifact...
daemon@ATHENA.MIT.EDU (Paul Crowley)
Fri Nov 24 01:30:45 2000
To: Lynn.Wheeler@firstdata.com
Cc: Mark Scherling <mscherling@xcert.com>, Bram Cohen <bram@gawth.com>,
"Arnold G. Reinhold" <reinhold@world.std.com>,
Ben Laurie <ben@algroup.co.uk>, obfuscation@beta.freedom.net,
cryptography@c2.net, cypherpunks@cyberpass.net, dcsb@ai.mit.edu
From: Paul Crowley <paul@cluefactory.org.uk>
Date: 23 Nov 2000 23:15:52 +0000
In-Reply-To: Lynn.Wheeler@firstdata.com's message of "Thu, 23 Nov 2000 11:17:10 -0800"
Message-ID: <87n1eqe0uv.fsf@hedonism.subnet.hedonism.cluefactory.org.uk>
Lynn.Wheeler@firstdata.com writes:
> The other solution is to go online and do real-time checks ... but
> doing real-time checks invalidates basic design decision trade-offs
> associated with choosing a R/O partial replicated distributed data
> implementation in the first place.
Have you looked at the design of SPKI CRLs? I think there are
possibilities in there that address the difficulties you raise.
--
__
\/ o\ paul@cluefactory.org.uk
/\__/ http://www.cluefactory.org.uk/paul/
