[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SOI: identity protection and DOS

To: Michael Thomas <mat@cisco.com>
Subject: Re: SOI: identity protection and DOS
From: Henry Spencer <henry@spsystems.net>
Date: Tue, 20 Nov 2001 13:18:50 -0500 (EST)
cc: ipsec@lists.tislabs.com
In-Reply-To: <15354.32876.87395.582187@thomasm-u1.cisco.com>
Sender: owner-ipsec@lists.tislabs.com

On Tue, 20 Nov 2001, Michael Thomas wrote:
> ...In the particular example given, if my
> national identity smart card gave away all sorts
> of private information to any merchant who asked,
> why should I have any belief that that information
> will remain private?

Do you expect that your credit-card numbers will remain private, even
though you give them to any merchant you deal with?  Sure you do!  You
may not bet your life on it, but you do bet your credit rating on it.

Remember, also, that a particular certificate isn't necessarily used to
authenticate you to *anyone who asks*.  It may be used only for quite
restricted purposes, e.g. to get you through a corporate firewall.  The
expectation of privacy is quite legitimately rather higher in that case. 

                                                          Henry Spencer
                                                       henry@spsystems.net

Follow-Ups:

Re: SOI: identity protection and DOS

From: Michael Thomas <mat@cisco.com>

References:

Re: SOI: identity protection and DOS

From: Michael Thomas <mat@cisco.com>

Prev by Date: Re: SOI: identity protection and DOS
Next by Date: Re: SOI: identity protection and DOS
Prev by thread: Re: SOI: identity protection and DOS
Next by thread: Re: SOI: identity protection and DOS
Index(es):
- Main
- Thread