Re: Top SDSI issues

["Angelos D. Keromytis" <angelos@dsl.cis.upenn.edu>]

-----BEGIN PGP SIGNED MESSAGE-----


In message <199706271308.AA02911@swan.lcs.mit.edu>, Ron Rivest writes:
>2.  [Hashes of keys]

I'm in favour of using the raw keys; i don't think we save anything by
using hashes, since in most cases we'll have to provide the key as
well (and, if using hashes, as a separate blob).

>3.  [Thresholding]

I'm in favour of letting PolicyMaker programs handle complex queries;
the basic SPKI syntax should be as simple as possible.

>4.  [Longer issuers and cert chain collapsing]
[snip]
>    we addressed before, and decided not to allow such issuers because they
>    may seem a bit more complicated to the user.  

And i'll agree.

- -Angelos

PS. Ron, the To: and Cc: addresses on your post were a bit..um..not
normal:

 To: carl@theory.lcs.mit.edu
 Cc: butler@theory.lcs.mit.edu, tatu@theory.lcs.mit.edu,
        angelos@theory.lcs.mit.edu, rivest-only@theory.lcs.mit.edu,
        spki@c2.net
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv
Comment: Processed by Mailcrypt 3.4, an Emacs/PGP interface

iQCVAwUBM7Piv70pBjh2h1kFAQGKgAQApM6CZrQvDrEoQc9kqAlD7MGSq/sMxHIG
5iHsza1EY/UmNrE95QUU2qIczIiwER/kp6oxt+7oQ3CRRkP32y70ra+YeZhulX36
ieijM+xwbB1KvD8anhlmfllo3NKyHMVl6h2fab5CVeg0wp9xeRW7CtKpqgojy6vN
GHcQ6h7NQRI=
=V564
-----END PGP SIGNATURE-----

---

Follow-Ups:

• Re: Top SDSI issues
• From: Carl Ellison <cme@cybercash.com>

References:

• Top SDSI issues
• From: rivest@theory.lcs.mit.edu (Ron Rivest)

---

• Prev by Date: Re: SPKI signing keys only
• Next by Date: Re: Subject signing redux (was: Re: Mary is Mary)
• Prev by thread: Top SDSI issues
• Next by thread: Re: Top SDSI issues
• Index(es):
  • Main
  • Thread