At 11:30 PM -0700 6/13/02, Einar Stefferud wrote:
Valdis(_dot_)Kletnieks(_at_)vt(_dot_)edu said:
On Fri, 14 Jun 2002 10:52:47 +1200, Franck Martin <Franck(_at_)sopac(_dot_)org>
said:
> Ideally, we should rate each CA in our applications and the application
> should give us a level of risk...
Hey.. it's the PGP Web of Trust. ;)
Content-Type: application/pgp-signature
Attachment converted: Macintosh HD:Untitled 1 (????/----) (0009FFDB)
By George -- I think You've Got It;-)...
Trust must be earned, and cannot be delegated;-)...
And cannot be transmitted via any single communication path.
Enjoy;-)...\Stef
PGP is the epitome of transitive trust!
Multiple cert paths do not necessarily make for more trust, but they
do add enough complexity to make the system unscaleable, not to
mention the revocation issues ...