[TrustBar] [Fwd: Re: Low assurance SSL CAs]
Ian G
iang at iang.org
Tue Feb 15 14:55:07 EST 2005
Duane wrote:
>On Wed, February 16, 2005 0:29, Ian G said:
>
>
>There is no point in decentralising it, if you do that we'll end up with a
>worst system then we currently have. We don't necisarily need a
>centralised system, just a metric that the CA policy for ID checks can be
>weighed against and if a user thinks it is unfair should be able to alter
>the weighting.
>
>
The 'metric' has to be either centralised -
agreed to some standard - or decentralised
so the user judges it on a per-CA basis.
Pick one! Standards based or per-CA?
iang
--
News and views on what matters in finance+crypto:
http://financialcryptography.com/
More information about the TrustBar
mailing list