Cryptography isnt everything and digital signatures is hardly
the only
alternative to challenge/response and as has been pointed out
many times,
certificates do not provide much more then that somebody went
into trouble
of getting it,
And so you should not presume to put them to the trouble of
taking special measures to get an authentication credential
just for you...
The authentication provided by web issued certificates is limited,
but it is a lot less limited than that provided by challenge response
which is very easily bypassed. Just set up a bot to reply to the other
bot.
Phill
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg