[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Summary Trust x Delegation
From email@example.com Wed May 28 20:38:12 1997
Received: from blacklodge.c2.net (blacklodge.c2.net [18.104.22.168]) by public.bta.net.cn (22.214.171.124/8.6.9) with ESMTP id UAA13962 for <firstname.lastname@example.org>; Wed, 28 May 1997 20:38:08 +0800
Received: (from majordom@localhost) by blacklodge.c2.net (8.8.5/8.7.3) id EAA28915 for spki-outgoing; Wed, 28 May 1997 04:05:12 -0700 (PDT)
X-Authentication-Warning: blacklodge.c2.net: majordom set sender to email@example.com using -f
Organization: ESAT, K.U.Leuven, Belgium
Date: Wed, 28 May 1997 13:02:44 +0200 (MET DST)
From: Stef Hoeben <Stefan.Hoeben@esat.kuleuven.ac.be>
Subject: Re: Summary Trust x Delegation
Content-Type: TEXT/PLAIN; charset=US-ASCII
At 03:58 PM 5/24/97 GMT, William Allen Simpson wrote:
>> From: "E. Gerck" <firstname.lastname@example.org>
>> We have the following *main* groups, propositions and comments:
>> A. "Trust is not transitive" is a fact in all cases even with perfect
>> B. "Trust is not transitive" only if you take forgery and unlawful acts
>> C. "Trust is transitive". There is no issue about it and delegation is a
>I'm sorry, but that's not what I got out of the debate at all.
>I saw folks indicate that trust is not an objective protocol issue, it
>is a subjective human motivation.
>The protocol issues are "authentication", "authorization", and
>SPKI needs to clearly indicate how each is handled. I think that it
>does a reasonably job so far, but anticipate cleaning up the text.
But the problem remains that the PKI's at the moment are not usable
(special purpuse stuff like SET, ... excluded) BECAUSE you can't
trust the certficates. The above looks to me like a playing with
words which goes around this problem. See below for an example.
Last week, you decided to trust Skywalker on matters of X because
you have a SPKI cert signed by Bob, saying Skywalker never let
anyone down in matters of X. And you trust Bob.
Today, X turns out to be a big mess (Skywalker doesn't like you,
someone faked the cert, Bob mixed Skywalker with Darth Vader, ...)
--> You're in trouble (unless you can use some laws like X.509
may solve the problem with the CA-legislation) and you can't
do anything about it.
SO THIS IS NOT USABLE (imho).
Doesn't SPKI have to solve this trust problem before people will
be able to use this, or is there allready a solution?