Re: Perhaps OSI security is not possible in a liberal community!

I've noticed that PGP has been described as using a transitive trust
model for certification.  I just wanted to clarify this issue a bit.
I don't think the PGP trust model is that transitive.  In fact, it
requires that the user decide who he trusts to certify keys, and that
trust is NOT transitive.  If Alice trusts Bob to certify a key, and Bob
trusts Charlie to certify a key, PGP does not suggest or encourage
that Alice trust Charlie to certify a key.  Each PGP user must decide 
whom he *directly* trusts to certify other keys.  It doesn't look 
transitive to me, assuming I understand what is meant by transitive.  
In fact, the user is warned to not apply trust transitively.  This follows
normal human common sense.  

There is a detailed discussion of this in the PGP documentation, in the
section titled "How does PGP keep track of which keys are valid?"

Philip Zimmermann

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Perhaps OSI security is not possible in a liberal community!, Steve Kent Re: Perhaps OSI security is not possible in a liberal community!, Philip Zimmermann <= Re: Re: Perhaps OSI security is not possible in a liberal community!, JUENEMAN%Erde

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Trust Models [Re: Perhaps OSI Security...], Steve Kent
Next by Date:	Re: Re: Trust Models, Richard . Ankney
Previous by Thread:	Re: Perhaps OSI security is not possible in a liberal community!, Steve Kent
Next by Thread:	Re: Re: Perhaps OSI security is not possible in a liberal community!, JUENEMAN%Erde
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Trust Models [Re: Perhaps OSI Security...], Steve Kent

Next by Date:

Re: Re: Trust Models, Richard . Ankney

Previous by Thread:

Re: Perhaps OSI security is not possible in a liberal community!, Steve Kent

Next by Thread:

Re: Re: Perhaps OSI security is not possible in a liberal community!, JUENEMAN%Erde

Indexes:

[Date] [Thread] [Top] [All Lists]