Re: Global PKI on DNS?

In a system 
like DNS which makes clear who is authoritative for which names, I 
don't think the term "trust" is applicable, and that is the crux of 
our disagreement.


The problem is that, although the owner of the domain is authoritative
for who gets to use which name, that doesn't mean their users want
them to issue certificates.  The first requires that the owner trusts
the users; the second requires that the users trust the owner.  And
trust is not symmetric.

/========================================================\
|John Stracke                    |Principal Engineer     |
|jstracke(_at_)incentivesystems(_dot_)com   |Incentive Systems, Inc.|
|http://www.incentivesystems.com |My opinions are my own.|
|========================================================|
|But this one goes to 11x.                               |
\========================================================/

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Robert Elz Re: Global PKI on DNS?, Michael Richardson RE: Global PKI on DNS?, Ari Ollikainen RE: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, John Stracke <= Re: Global PKI on DNS?, Stephen Kent RE: Global PKI on DNS?, Mike Burns RE: Global PKI on DNS?, Einar Stefferud Re: Global PKI on DNS?, Keith Moore RE: Global PKI on DNS?, John Stracke Re: Global PKI on DNS?, Einar Stefferud

Previous by Date:	Re: Global PKI on DNS?, Michael Richardson
Next by Date:	Re: Global PKI on DNS?, Eric A. Hall
Previous by Thread:	RE: Global PKI on DNS?, Stephen Kent
Next by Thread:	Re: Global PKI on DNS?, Stephen Kent
Indexes:	[Date] [Thread] [Top] [All Lists]