[79524] in cryptography@c2.net mail archive
Re: Failure of PKI in messaging
daemon@ATHENA.MIT.EDU (James A. Donald)
Thu Feb 15 17:50:18 2007
Date: Fri, 16 Feb 2007 08:41:05 +1000
From: "James A. Donald" <jamesd@echeque.com>
To: Ed Gerck <edgerck@nma.com>
CC: cryptography@metzdowd.com
In-Reply-To: <45D2A7C1.9030905@nma.com>
--
Ed Gerck wrote:
> That's not banking. Banks and their clients already
> have a trusted relationship. The banks webmail
> interface leverages this to provide a trust reference
> that the user can easily verify (yes, this is my name
> and balance). That's why it works, and that's what is
> missing in the bank PKI email model -- what's that
> relationship buying you?
>
> Email for banks should thus leverage the relationship,
> rather than present an ab initio communication.
Hence my proposal for a single sign on and messaging
system resembling IM buddy lists - the computer tracks
relationship information, rather than true name
information.
--digsig
James A. Donald
6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
NMb/3lhm5wj1jn9bea0UJsViLkPWzA2jR+GCOgFV
4WdwEv3Qp46Bt5AR7KTqFUUnJqu7E/XHnkKfJ2t/D
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
