Re: Global PKI on DNS?

Correction: A single global rooted PKI is a bad idea, a single global (inthe namespace sense, not a single system) PKI database where we can look upcertificates is a good idea.





At 07:39 PM 6/9/2002 -0400, Keith Moore wrote:

> I was wondering if the best system to build a global PKI wouldn't be the
> DNS system already in place?

A global PKI is a Bad Idea.  Nobody is sufficiently trustworthy to be the
root CA.

Keith

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, Pekka Savola Re: Global PKI on DNS?, Simon Josefsson Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, Simon Josefsson Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, Bill Manning Re: Global PKI on DNS?, Bill Sommerfeld Re: Global PKI on DNS?, Ben Laurie Re: Global PKI on DNS?, Arne Ansper Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Michael StJohns <= Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Franck Martin Re: Global PKI on DNS?, Keith Moore class E address, Nguyen Thi Mai Trang Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Steven M. Bellovin Re: Global PKI on DNS?, Mats Dufberg

Previous by Date:	Re: Global PKI on DNS?, Keith Moore
Next by Date:	Re: Global PKI on DNS?, Keith Moore
Previous by Thread:	Re: Global PKI on DNS?, Keith Moore
Next by Thread:	Re: Global PKI on DNS?, Keith Moore
Indexes:	[Date] [Thread] [Top] [All Lists]