[8953] in cryptography@c2.net mail archive
Re: Crypographically Strong Software Distribution HOWTO
daemon@ATHENA.MIT.EDU (Rich Salz)
Tue Jul 3 10:21:32 2001
Message-ID: <3B41D37F.935DCD90@zolera.com>
Date: Tue, 03 Jul 2001 10:15:27 -0400
From: Rich Salz <rsalz@zolera.com>
MIME-Version: 1.0
To: Ben Laurie <ben@algroup.co.uk>
Cc: "V. Alex Brennen" <vab@cryptnet.net>,
cryptography@wasabisystems.com, ASF Members <members@apache.org>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
> What this does not address is the common situation where the
> distribution gets signed by a different person each time (example:
> Apache). I've put some pretty serious thought into this problem and come
> to a few conclusions.
>
> The obvious answer is "use a role key".
All that work... when a conventional PKI will solve all the problems
you listed.
/r$
--
Zolera Systems, Securing web services (XML, SOAP, Signatures,
Encryption)
http://www.zolera.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
