dotgnu-auth
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Auth]Authorization Certificates

From: Norbert Sendetzky
Subject: Re: [Auth]Authorization Certificates
Date: Tue, 17 Jul 2001 15:22:00 +0200 
On Tuesday 17 July 2001 02:09, you wrote:
> yes, i believe that PKI is the solution to server authorization.
>
> the problem right now seems to be "how does anyone know the server they
> are communicating with can be trusted?".
>
> the solution, i believe, firmly rests in PKI. PKI is Public Key
> Infrastructure, for those who don't know, and it is outlined:
>
> * everyone has a certificate, or maybe multiple ones (don't see why, but
> it's possible).
> * each certificate/user is 'certified' by someone else. it can be a
> friend, bank, family member, etc. anyone.
> * when you go to deal with this person, you may not know them, but the
> trick is to find a "link" with people who you trust, and who also trust
> this other person.
> * this can all be handled automatically, so to be virtually seamless to
> you and everyone else.

That's the way PGP/GPG does!
It's secure, already there and has been proven over a long period of time.

Norbert
reply via email to
[Prev in Thread] Current Thread [Next in Thread]