[148484] in cryptography@c2.net mail archive
Re: [Cryptography] The next generation secure email solution
daemon@ATHENA.MIT.EDU (Ralf Senderek)
Tue Dec 17 13:45:14 2013
X-Original-To: cryptography@metzdowd.com
Date: Tue, 17 Dec 2013 15:03:37 +0100 (CET)
From: Ralf Senderek <crypto@senderek.ie>
To: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <20131217135709.ABE9521F78@laptop.kerry-linux.ie>
Reply-To: Ralf Senderek <crypto@senderek.ie>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
Guido Witmond wrote:
> You can use an untrusted CA to bootstrap. I show how it can be done at:
>
> http://eccentric-authentication.org/Brucon-Eccentric.pdf
This is an interesting idea, because it provides certificates on demand
for ordinary users, if they decide to sign up to a certain site. The
certs are then being used for other purposes, so the site does act as a
bootstap for using crypto. The one thing that this proposal relies on is
the availability of a common piece of software (user agent) that stores
the private key for the user. It's this part of the picture where things
get tricky.
--ralf
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
