[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: charter question re IKE changes
I was responding to the "poorly designed CA product" comment that was made
earlier. How does a "poorly designed CA product" fit into the comparision
of self-signed certificates and pre-shared keys!
chinna
On Wed, 18 Oct 2000, Henry Spencer wrote:
> On Tue, 17 Oct 2000, Chinna N.R. Pellacuru wrote:
> > My point is that, a security model based on self-signed certificates is
> > completely different than a model based on CA. You can't compare them as
> > if they provide the same benefits, and as if they meet the same
> > requirements.
>
> True, but irrelevant. The comparison here is between a model using shared
> secrets and a model using self-signed certificates, since the topic on the
> table is the elimination of the former in favor of the latter.
>
> Henry Spencer
> henry@spsystems.net
>
chinna narasimha reddy pellacuru
s/w engineer
Follow-Ups:
References: