Re: Global PKI on DNS?

At 3:32 PM -0400 6/13/02, Harald Koch wrote:

Of all the gin joints in all the towns in all the world, Stephen Kent
had to walk into mine and say:


 Why does everyone keep thinking that explicit trust is an essential
 element of every PKI?


If the reasonably intelligent, technically skilled persons in the IETF
can't "get it", what makes you think anyone else will?

The technical skill of most of the individuals in this debate is notin the area of security. Also, there has been a very big PR campaignfor many years that was designed to cause people to equate explicittrust and PKIs, because those who funded the campaign were public CAsrequiring such trust. That campaign has been effective in creating aperception among many folks, technical or not, intelligent orotherwise, and it is this perception that clouds this discussion, inlarge part. But, on any case, it is not necessary for everyone to"get it" for everyone to "use it."


Steve

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, Einar Stefferud Re: Global PKI on DNS?, Chris Evans Re: Global PKI on DNS?, Alex Audu Re: Global PKI on DNS?, Stephen Kent a nit, Re: Global PKI on DNS?, Ed Gerck Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Harald Koch Re: Global PKI on DNS?, Stephen Kent <= Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Ed Gerck Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Ed Gerck Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Ed Gerck Re: Global PKI on DNS?, Eric Rescorla Re: Global PKI on DNS?, Ed Gerck Re: Global PKI on DNS?, Eric Rescorla Re: Global PKI on DNS?, Stephen Kent