[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: charter question re IKE changes

To: Henry Spencer <henry@spsystems.net>
Subject: Re: charter question re IKE changes
From: "Chinna N.R. Pellacuru" <pcn@cisco.com>
Date: Wed, 18 Oct 2000 10:04:03 -0700 (PDT)
cc: "Angelos D. Keromytis" <angelos@dsl.cis.upenn.edu>, Michael Richardson <mcr@research.solidum.com>, ipsec@lists.tislabs.com
In-Reply-To: <Pine.BSI.3.91.1001018095033.3537B-100000@spsystems.net>
Sender: owner-ipsec@lists.tislabs.com

I was responding to the "poorly designed CA product" comment that was made
earlier. How does a "poorly designed CA product" fit into the comparision
of self-signed certificates and pre-shared keys!

    chinna

On Wed, 18 Oct 2000, Henry Spencer wrote:

> On Tue, 17 Oct 2000, Chinna N.R. Pellacuru wrote:
> > My point is that, a security model based on self-signed certificates is
> > completely different than a model based on CA. You can't compare them as
> > if they provide the same benefits, and as if they meet the same
> > requirements.
> 
> True, but irrelevant.  The comparison here is between a model using shared
> secrets and a model using self-signed certificates, since the topic on the
> table is the elimination of the former in favor of the latter. 
> 
>                                                           Henry Spencer
>                                                        henry@spsystems.net
> 

chinna narasimha reddy pellacuru
s/w engineer

Follow-Ups:

Re: charter question re IKE changes

From: Michael Richardson <mcr@solidum.com>

References:

Re: charter question re IKE changes

From: Henry Spencer <henry@spsystems.net>

Prev by Date: Re: charter question re IKE changes
Next by Date: Re: charter question re IKE changes
Prev by thread: Re: charter question re IKE changes
Next by thread: Re: charter question re IKE changes
Index(es):
- Main
- Thread