[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: encodings, character sets, general requirements

To: Tatu Ylonen <ylo@cs.hut.fi>
Subject: Re: encodings, character sets, general requirements
From: Bill Sommerfeld <sommerfeld@apollo.hp.com>
Date: Thu, 29 Feb 1996 14:22:38 -0500
Cc: cme@cybercash.com (Carl Ellison), spki@c2.org
In-Reply-To: ylo's message of Wed, 28 Feb 1996 03:52:13 +0200. <199602280152.DAA08364@trance.olari.clinet.fi>
Sender: owner-spki@c2.org

-----BEGIN PGP SIGNED MESSAGE-----

content-type: text/plain; charset=us-ascii

   Other requirements:
     - Trust model must be a web (people want to choose whom they trust).
       People must be able to choose whom they trust or consider
       reliable roots (maybe with varying reliabilities).

The trust model should be a "constrained web", not the current PGP
free-for-all.

Certificates of keys being used to sign other certificates should
spell out the "attributes" or "meanings" that the third party (or,
more correctly, the third party's key) is trusted to assert and/or
certify.

If you trust a so-called "root" key, you should be willing to sign a
certificate for your own personal use which asserts that fact..  in
other words, "you are your own root"...

                                        - Bill




-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBMTX89lpj/0M1dMJ/AQE1+AP9GSGPMAgSn++1Sj1adTCpOmxsx03zo88t
XQaKiB9I9laQPgePR0TCCwwcRSUVacqsLBoMZR5imkjS4tO8O4Z9pQ51PFJ26ux8
ESAUziJJHBYPO7CcImrVSwxNqTPuUyTjqjjTf18Z6uRlQA4qAbAwUo+4jvALT7Gk
TgYzZqbHpXk=
=qVGl
-----END PGP SIGNATURE-----

References:

encodings, character sets, general requirements

From: Tatu Ylonen <ylo@cs.hut.fi>

Prev by Date: losing private keys
Next by Date: Re: owner-spki@c2.org, ietf-pkix@tandem.com
Prev by thread: encodings, character sets, general requirements
Next by thread: Re: encodings, character sets, general requirements
Index(es):
- Main
- Thread