[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Principles and Principals

To: I.Brown@xxxxxxxxxxxx (Ian Brown)
Subject: Re: Principles and Principals
From: Patrick Richard <patr@xxxxxxxxx>
Date: Wed, 24 Sep 1997 23:05:30 -0700 (PDT)
Cc: ietf-open-pgp@xxxxxxx
In-reply-to: <342798D4.F0818C87@xxxxxxxxxxxx> from "Ian Brown" at Sep 23, 97 11:24:20 am
Sender: owner-ietf-open-pgp@xxxxxxx

Ian Brown wrote :
> > The PGP public-key is the principal.
> > 
> ...
> 
> I think this is a great way to look at it. Using the public key, its
> hash or fingerprint as *the* DN allows all sorts of important
> functionality like authorisations.

The major problem with 'key-principal' architectures is the
revocation problem.

When my key is revoked/changed/upgraded/whathaveyou all bindings
are lost.

If you develop a system that goes around this, then the key is
not the principal...

Just my $0.02

-Pat
---
patr@xxxxxxxxx
Public Key available via LDAP
http://www.xcert.com

Follow-Ups:
- Re: Principles and Principals
  - From: Jon Callas
- Re: Principles and Principals
  - From: Bonatti Chris

References:
- Re: Principles and Principals
  - From: Ian Brown

Prev by Date: Re: Principles and Principals
Next by Date: Re: stego support
Previous by thread: Re: Principles and Principals
Next by thread: Re: Principles and Principals
Index(es):
- Date
- Thread