Re: PKI is weakly secure (was Re: Updating the rules?)

To: Douglas Otis <dotis at mail-abuse.org>
Subject: Re: PKI is weakly secure (was Re: Updating the rules?)
From: Stephen Kent <kent at bbn.com>
Date: Tue, 10 Jul 2007 16:51:10 -0400
Cc: IETF discussion list <ietf at ietf.org>, Eliot Lear <lear at cisco.com>
In-reply-to: <EA5CB677-A435-4A6B-BB6D-D0B88876A535@mail-abuse.org>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <468C9DC5.1070805@gmail.com> <68fba5c50707062119l43e230edsd2361b55b2e2225b@mail.gmail.com> <468F331F.7000409@cs.utk.edu> <468F5EA8.8070006@necom830.hpcl.titech.ac.jp> <468F688A.60800@cisco.com> <468F71D5.3000604@necom830.hpcl.titech.ac.jp> <4691C8EC.8000509@cisco.com> <EA5CB677-A435-4A6B-BB6D-D0B88876A535@mail-abuse.org>

At 1:13 PM -0700 7/10/07, Douglas Otis wrote:

On Jul 8, 2007, at 10:34 PM, Eliot Lear wrote:
This can be said of any technology that is poorly managed.
So, you merely believe that the infrastructure of PKI is well managed.
In all but a single instance I have no evidence to the contrary. The one case of an exploit was extremely well publicized and ameliorated within days. And that was years ago.
Trust Models.
Once a CA is vetted, it can be leveraged as a point of trust. The trust is of an association with a URL validated by the certificate.

your reference to a URL is a very specialized (not generic) description of how one might interpret the security services associated with a CA.

Steve


_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

Follow-Ups:
- Re: PKI is weakly secure (was Re: Updating the rules?)
  - From: Douglas Otis

References:
- Updating the rules?
  - From: Brian E Carpenter
- Re: Updating the rules?
  - From: Robert Sayre
- Re: Updating the rules?
  - From: Keith Moore
- PKI is weakly secure (was Re: Updating the rules?)
  - From: Masataka Ohta
- Re: PKI is weakly secure (was Re: Updating the rules?)
  - From: Eliot Lear
- Re: PKI is weakly secure (was Re: Updating the rules?)
  - From: Masataka Ohta
- Re: PKI is weakly secure (was Re: Updating the rules?)
  - From: Eliot Lear
- Re: PKI is weakly secure (was Re: Updating the rules?)
  - From: Douglas Otis

Prev by Date: Re: PKI is weakly secure (was Re: Updating the rules?)
Next by Date: Autoreply: Last Call: draft-ietf-sip-answermode (Requesting Answering Modes for the Session Initiation Protocol (SIP)) to Proposed Standard
Previous by thread: Re: PKI is weakly secure (was Re: Updating the rules?)
Next by thread: Re: PKI is weakly secure (was Re: Updating the rules?)
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: PKI is weakly secure (was Re: Updating the rules?)

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.