[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Trust and Transitivity
-----BEGIN PGP SIGNED MESSAGE-----
On Thu, 22 May 1997, E. Gerck wrote:
> 1. Skywalker signs Alice's key with tag X, so Skywalker trusts Alice in
> matters of X,
> 2. Skywalker meets Bob and Bob decides that he trusts Skywalker in matters
> of X.
> The question is: "Can you say that Bob trusts Alice in matters of X, based
> on the two assertions before?"
> The answer is "No". Let's see why.
This is certainly correct, but I don't think it really is relevant.
If Bob does not trust certificates issued by Skywalker, he will not
The service provider can always choose which certificates to trust,
and which reductions to allow. What is important here is the case
where Skywalker does _not_ trust Alice, and therefore does not give
her a certificate and Bob _does_ accept Skywalker's certificates.
That is, without a certificate, Alice definitely cannot access the
service Bob provides. Period.
Camillo Sdrs <Camillo.Sars@DataFellows.com> Data Fellows Ltd.
http://www.Europe.DataFellows.com/ Secure Networking(tm) with
http://www.iki.fi/ged F-Secure SSH
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----