Re: PKI is weakly secure (was Re: Updating the rules?)

To: mohta at necom830.hpcl.titech.ac.jp
Subject: Re: PKI is weakly secure (was Re: Updating the rules?)
From: itojun at itojun.org (Jun-ichiro itojun Hagino)
Date: Mon, 9 Jul 2007 23:29:44 +0900 (JST)
Cc: ietf at ietf.org
In-reply-to: Your message of "Sat, 07 Jul 2007 18:36:40 +0900" <468F5EA8.8070006@necom830.hpcl.titech.ac.jp>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <468F5EA8.8070006@necom830.hpcl.titech.ac.jp>

> What, do you mean, strong security?
> 
> Given that CAs of PKI can be compromised as easily as ISPs
> of the Internet, PKI is merely weakly secure as weakly as
> the plain Internet.

	i would not word like this, you are asking for flamewar :-)

	i would say:
	- technologies that use hierarchical structure to combat scalability
	  problem is very tough to make a successful deployment
	- key distribution problem is almost like NP-complete problem, it is
	  way too difficult that you need some assumption to relax it (e.g.
	  ssh first-time contact weak authentication)

	you now know which RFC i do not really love :-P

itojun

_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

References:
- PKI is weakly secure (was Re: Updating the rules?)
  - From: Masataka Ohta

Prev by Date: Re: Application knowledge of transport characteristics (was: Re: Domain Centric Administration)
Next by Date: Autoreply: Last Call: draft-drage-sipping-service-identification (A Session Initiation Protocol (SIP) Extension for the Identification of Services) to Informational RFC
Previous by thread: Re: PKI is weakly secure
Next by thread: Re: PKI is weakly secure (was Re: Updating the rules?)
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: PKI is weakly secure (was Re: Updating the rules?)

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.