[65699] in North American Network Operators' Group
Re: Does your Certifying Authority have a clue who you are? Do they care?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Fri Dec 5 11:08:30 2003
To: Adi Linden <adil@adis.on.ca>
Cc: nanog@nanog.org
In-Reply-To: Your message of "Fri, 05 Dec 2003 09:28:05 CST."
<Pine.LNX.4.44.0312050920450.23831-100000@adibox.knet.ca>
From: Valdis.Kletnieks@vt.edu
Date: Fri, 05 Dec 2003 11:01:44 -0500
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_176843648P
Content-Type: text/plain; charset=us-ascii
On Fri, 05 Dec 2003 09:28:05 CST, Adi Linden said:
> While the ssl certificate is meant to verify the owners identity, as a
> consumer I would never trust a ssl certificate for that purpose. It does
> provide a reasonable effort to keep information between me and the server
> confidential. That's worth something, I guess.
So what does the PKI actually buy you that using a throwaway self-signed cert
doesn't provide?
--==_Exmh_176843648P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE/0KvocC3lWbTT17ARAoZwAKD9AGY27nkxSuG6cP3WEhP27gWHJACeMwxA
D3a6X+jMJrQpOE/dgShgXrM=
=Ir6D
-----END PGP SIGNATURE-----
--==_Exmh_176843648P--
