[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: public key transfer problem.

To: Stuart Jacobs <sjj0@gte.com>
Subject: Re: public key transfer problem.
From: Henry Spencer <henry@spsystems.net>
Date: Thu, 11 Feb 1999 08:17:04 -0500 (EST)
cc: ipsec@tis.com
In-Reply-To: <199902111249.HAA22611@newman.gte.com>
Sender: owner-ipsec@ex.tis.com

On Thu, 11 Feb 1999, Stuart Jacobs wrote:
> Regardless of how you obtain a subject's public key, how do you know that
> the public key you are about to use actually belongs to the intended
> recipient?  I suggest that the only way any public key can be used is by
> first having validated the key via a trusted third party in a formal web of
> trust (Certificate Authority and PKI) or by direct communication with the
> key owner for an informal web of trust (ala PGP).

Or by using Secure DNS -- again, see RFC 2065.  Agreed that this is an
issue, but in general there's a solution for each possible access route.

                                                          Henry Spencer
                                                       henry@spsystems.net
                                                     (henry@zoo.toronto.edu)

References:

Re: public key transfer problem.

From: Stuart Jacobs <sjj0@gte.com>

Prev by Date: Re: public key transfer problem.
Next by Date: RE: Tools for attacks
Prev by thread: Re: public key transfer problem.
Next by thread: RE: public key transfer problem.
Index(es):
- Main
- Thread