BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] root CA bloat
- Subject: [Discuss] root CA bloat
- From: richard.pieri at gmail.com (Richard Pieri)
- Date: Tue, 25 Nov 2014 14:52:47 -0500
- In-reply-to: <20141125181521.GA7124@dragontoe.org>
- References: <546C4823.6060900@gmail.com> <BN3PR0401MB1204BAB10AE6249C54E4E81BDC760@BN3PR0401MB1204.namprd04.prod.outlook.com> <546D7B55.70903@gmail.com> <BN3PR0401MB1204E9F1CF304F6724855281DC760@BN3PR0401MB1204.namprd04.prod.outlook.com> <546FC87F.1090203@gmail.com> <BN3PR0401MB120420D9FF67828E9C5551C4DC750@BN3PR0401MB1204.namprd04.prod.outlook.com> <54727CF6.9000301@gmail.com> <54728AD7.6040507@gmail.com> <20141124202035.GI11734@dragontoe.org> <5473EAE4.3050301@gmail.com> <20141125181521.GA7124@dragontoe.org>
On 11/25/2014 1:15 PM, Derek Martin wrote: > Let's say I meet you on the street, and you tell me you are Steven > Smith, and produce very good fake ID to that effect. As it happens > (in this scenario) I am exceptionally good at spotting fake ID. I > prove that your ID is fake. This does not prove to me who you are--it > only proves to me one identity whom you are not. It proves that I'm that particular guy you met on the street. You may not know my real identity but you still have a piece of information -- a fingerprint if you will -- that is uniquely mine. If that fingerprint is used then you know that it's the guy you met on the street with Steven Smith fake ID #32. That's all you need if you want to communicate with fake Steven Smith #32. At which point a web of trust or hybrid web and chain can be used if you need more than that. It's not an unsolvable problem. It's already been solved: social networks. What is your friends list on Facebook? It's a web of trust. What is a "like" on Facebook? It's someone in your web of trust endorsing some bit of information that you will see in your news feed given enough endorsements. -- Rich P.
- Follow-Ups:
- [Discuss] root CA bloat
- From: invalid at pizzashack.org (Derek Martin)
- [Discuss] root CA bloat
- References:
- [Discuss] free SSL certs from the EFF
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] free SSL certs from the EFF
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] free SSL certs from the EFF
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] free SSL certs from the EFF
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] root CA bloat
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] root CA bloat
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] root CA bloat
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] root CA bloat
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] root CA bloat
- From: invalid at pizzashack.org (Derek Martin)
- [Discuss] root CA bloat
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] root CA bloat
- From: invalid at pizzashack.org (Derek Martin)
- [Discuss] free SSL certs from the EFF
- Prev by Date: [Discuss] free SSL certs from the EFF
- Next by Date: [Discuss] root CA bloat
- Previous by thread: [Discuss] root CA bloat
- Next by thread: [Discuss] root CA bloat
- Index(es):