[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: charter question re IKE changes




>>>>> "Chinna" == Chinna N R Pellacuru <pcn@cisco.com> writes:
    Chinna> I was responding to the "poorly designed CA product" comment that
    Chinna> was made earlier. How does a "poorly designed CA product" fit
    Chinna> into the comparision of self-signed certificates and pre-shared
    Chinna> keys!

  If son-of-IKE mandates support for self-signed certificates, then one does
not need to depend on the quality of the CA products to use public key
authentication. 

  The origin of the desire to keep pre-shared keys is due to "poorly designed
CA products" --- really more to do with business models of certain public
key libraries.

   :!mcr!:            |  Solidum Systems Corporation, http://www.solidum.com
   Michael Richardson |For a better connected world,where data flows faster<tm>
 Personal: http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html
	mailto:mcr@sandelman.ottawa.on.ca	mailto:mcr@solidum.com




Follow-Ups: References: