Re: New Method for Authenticated Public Key Exchange without Digital Certificates
From: Michael Amling (nospam_at_nospam.com)
Date: 08/06/04
- Next message: Developwebsites: "Re: my crypto reviews"
- Previous message: newstome_at_comcast.net: "Re: possible cryptographic solution for key-loggers?"
- In reply to: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
- Next in thread: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
- Reply: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 06 Aug 2004 14:30:39 GMT
Anne & Lynn Wheeler wrote:
>
> In fact, all the root trust keys ... even in PKI & digital
> certificates paradigm have this issue ... however, frequently they
> leave the issue of how the environment is initially populated with the
> initial root trust keys as an exercise for the student (or it is taken
> for granted as magically happening).
The problem is certainly ignored in the downloading of web browsers.
I've never seen even https offered for downloading a browser, and even
if it were, how would the https connection be validated?
Granted, you could spend a few dollars and get the browser on CD, but
I've never known anyone to do that. And it wouldn't answer the question
about which of the five dozen root certificates the browser recognizes
are worth trusting.
> at its simplest ... one could claim that the whole PGP environment
> implements such an infrastructure ... the ability to perform public
> key exchange w/o requiring certificates from certification authorities
> trust roots.
>
> as an aside ... i've long advocated "naked" public keys and that
> certificates frequently are redundant and superfluous.
--Mike Amling
- Next message: Developwebsites: "Re: my crypto reviews"
- Previous message: newstome_at_comcast.net: "Re: possible cryptographic solution for key-loggers?"
- In reply to: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
- Next in thread: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
- Reply: Anne & Lynn Wheeler: "Re: New Method for Authenticated Public Key Exchange without Digital Certificates"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
