[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: NEW Data type for certificate selection ?

To: "'Tony Bartoletti'" <azb@xxxxxxxx>
Subject: RE: NEW Data type for certificate selection ?
From: Anders Rundgren <anders.rundgren@xxxxxxxxxx>
Date: Sat, 3 Oct 1998 09:39:43 +0200
Cc: "'ietf-pkix@xxxxxxx '" <ietf-pkix@xxxxxxx>, "'Ed Gerck'" <egerck@xxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-pkix@xxxxxxx

Tony,
>But unless a third party can be relied
>upon to reimburse me for my losses, when I send a digital check to
>"Acme Hardware" and recieve nothing in return, this third party is
>really not much more than a telephone directory.

Well, I do not share your optimism (?) that such problems have technical
solutions because there are only a few digital ways to adjust for human errors.

That there ever will be third parties that guarantee all kind of losses is
highly unlikely. They simply have to guarantee that the certificates they
issue belongs to known entities.  A DUN-number for a company, a
PPIT for a person or a valid credit-card number for a SET-certificate.
And of course run a CA in a sensible way...
That is not rocket-science and we don't need it either!

Biometrical PIN-code replacements will improve the trust you have in clients.

For servers I see few improvements except maybe that some data
can be searched for at public sites.  I.e. they may have to agree to
that to get a certificate of the type that you want to trust.

Just my 2 öre

Anders Rundgren
Senior Internet E-commerce Architect

Prev by Date: RE: NEW Data type for certificate selection ?
Next by Date: RE: NEW Data type for certificate selection ?
Previous by thread: RE: NEW Data type for certificate selection ?
Next by thread: RE: NEW Data type for certificate selection ?
Index(es):
- Date
- Thread