[cap-talk] [Fwd: Re: [e-lang] What do CAs contribute...an ironic short term benefit]

Mark Miller markm at cs.jhu.edu
Tue Feb 15 21:59:51 EST 2005 

MarcS' messages on this thread that appeared on e-lang appeared there by 
mistake. MarcS has since forwarded these to cap-talk, which is where this 
thread is happening. I'm forwarding Bill's and David's responses there. I'm 
cc'ing this message to e-lang to encourage further messages in this thread to 
be posted to cap-talk. Unless, of course, a message has some E or programming 
language relevance; in which case e-lang may indeed be more appropriate.


-------- Original Message --------
Subject: Re: [e-lang] What do CAs contribute...an ironic short term benefit
Date: Tue, 15 Feb 2005 17:07:01 -0800
From: Bill Frantz <frantz at pwpconsult.com>
Reply-To: Discussion of E and other capability languages	<e-lang at mail.eros-os.org>
To: Discussion of E and other capability languages <e-lang at mail.eros-os.org>

On 2/9/05, marcs at skyhunter.com (marcs) wrote:
>Uh...hmmm....now that I've assigned a pet name to that certificate, which is
>a unique identifier all on its own...remind me, what value is Verisign
>giving me?

Verisign is letting the owner of that certificate (Mark Miller) generate a new 
key and pass the trust you have in the current key into the new one.  If 
Verisign did online validation, then removing trust from a stolen key and 
transferring it to a new key would be easy and straight forward.  It is 
certainly possible to use good key hygiene (regular replacement of keys) 
without a "trusted third party" (TTP), but the TTP might make it enough easier 
to have a place in the trust equation.

Cheers - Bill

-------------------------------------------------------------------------
Bill Frantz        | The first thing you need when  | Periwinkle
(408)356-8506      | using a perimeter defense is a | 16345 Englewood Ave
www.pwpconsult.com | perimeter.                     | Los Gatos, CA 95032

_______________________________________________
e-lang mailing list
e-lang at mail.eros-os.org
http://www.eros-os.org/mailman/listinfo/e-lang



-- 
Text by me above is hereby placed in the public domain

     Cheers,
     --MarkM

More information about the cap-talk mailing list