 |
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU |
|
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU |
Richard Pieri wrote: > It's X.509 PKI key exchange. SSL is built on top of an X.509 PKI. > > X.509 is far from perfect. Very far. It shows in its fundamental > weaknesses (such as reliance on the trust of third party certificate > authorities... Agreed, but irrelevant with respect to the idea of eliminating passwords. Because whether you use a username and password or a client side certificate, you're still going to use SSL to encrypt the communication channel. If you want to have a separate discussion about replacing X.509 in SSL, then that's fine, but not germane to the thread. -Tom -- Tom Metro Venture Logic, Newton, MA, USA "Enterprise solutions through open source." Professional Profile: http://tmetro.venturelogic.com/
 |
|
| BLU is a member of BostonUserGroups | |
| We also thank MIT for the use of their facilities. | |
