[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Aliases (Re-sent)

To: Joe Tardo <tardo@raptor.com>
Subject: Re: Aliases (Re-sent)
From: Bill Sommerfeld <sommerfeld@apollo.hp.com>
Date: Thu, 29 Feb 1996 16:47:32 -0500
Cc: cme@acm.org, spki@c2.org, ietf-pkix@tandem.com
In-Reply-To: tardo's message of Thu, 29 Feb 1996 12:16:16 +0100. <2.2.32.19960229111616.006bbb1c@204.7.242.10>
Sender: owner-spki@c2.org

-----BEGIN PGP SIGNED MESSAGE-----

content-type: text/plain; charset=us-ascii

   Carl:
   
   I have a question for one of the advocates of using "internet" email
   addresses in lieu of distinguished names.
   
   Is cme@acm.org (cf: Carl's web page) REALLY cme@cybercash.com (cf: Carl's
   posting to this list)?  If so, where would I go to look up the alias
   certificate?  Will it be in one of dee@cybercash.com's signed dns
   entries?

cme@cybercash.com and cme@acm.org may be used by the same person, but
they are two potentially different roles for Carl (employee-of-CyberCash
vs. member-of-ACM), so they probably should not share keys and should
not be aliased.

If Carl were to leave cybercash, it would not be appropriate for him
to keep use of either the cme@cybercash.com address or key, because
persons inside and outside cybercash who were unaware of his departure
might continue send cybercash-confidential information to him by
mistake.

When he left, along with the key to his desk and the key to his office,
Carl might also want to turn in the private key part of any
cme@cybercash.com keypair which he used for confidentiality, to ensure
that his successor(s) would be able to pick up where he left off.

Naturally, he wouldn't want to turn over a signature key, because he
doesn't want his successor to be able to forge his signature.

I'll note that I have two email addresses I use regularly, and two
different PGP keys:

        sommerfeld@apollo.hp.com
        sommerfeld@orchard.medford.ma.us

The latter key is for my personal use, and has never been put on
equipment owned by HP.  If I ever leave HP, I'll revoke the former key
and continue using the latter.

                                        - Bill




-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBMTYe61pj/0M1dMJ/AQFXYgP7BY5Tp+duGknugV78A58+i4+6gUuNf/2Y
8m4nWSrpg1akJKK/YqnR2P63nw0iKxRwR7Jm/BMK8L2BIxTHdmvDqA2zsE0552ZB
T3aOiOy+lun4KSfCcWT2fPZ2mdZwoq1fDTfYp4LCMaRyJwJrAdaHuIfD2ugM5ws4
8nYS71R6ssA=
=jSJA
-----END PGP SIGNATURE-----

References:

Aliases (Re-sent)

From: Joe Tardo <tardo@raptor.com>

Prev by Date: Re: encodings, character sets, general requirements
Next by Date: "Perry E. Metzger": Re: A brief comparison of email encryption protocols
Prev by thread: Re: Aliases (Re-sent)
Next by thread: Re: Aliases (Re-sent)
Index(es):
- Main
- Thread