[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] Certificate Directories and Spam

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: Re: [IETF-PKIX] Certificate Directories and Spam
From: Ben Laurie <ben@xxxxxxxxxxxxx>
Date: Mon, 29 Dec 1997 19:01:32 +0000
Organization: A.L. Digital Ltd.
References: <>
Reply-to: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

Phillip M Hallam-Baker wrote:
>
> >It seems to me that publicly accessible directories with certificates in
> >them, especially those with email addresses conveniently located in the
> >subjectAltName field will provide an irresistible source of targets to
> >Spammers.  The reason for raising this issue on this list, is that it seems
> >to me that if this does happen it could greatly retard the deployment and
> >acceptance of an Internet PKI.
>
> If this really is a concern we could include the SHA-1 hash of the email
> address in the cert rather than the address itself.

Continue with this line of thinking, and you're liable to end up with
SPKI. And that wouldn't do at all :-)

Cheers,

Ben.

--
Ben Laurie            |Phone: +44 (181) 735 0686|Apache Group member
Freelance Consultant  |Fax:   +44 (181) 735 0689|http://www.apache.org
and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
A.L. Digital Ltd,     |http://www.algroup.co.uk/Apache-SSL
London, England.      |"Apache: TDG" http://www.ora.com/catalog/apache

References:
- Re: [IETF-PKIX] Certificate Directories and Spam
  - From: Phillip M Hallam-Baker

Prev by Date: Re: [IETF-PKIX] Certificate Directories and Spam
Next by Date: Re: [IETF-PKIX] Certificate Directories and Spam
Previous by thread: Re: [IETF-PKIX] Certificate Directories and Spam
Next by thread: Re: [IETF-PKIX] Certificate Directories and Spam
Index(es):
- Date
- Thread