Re: Global PKI on DNS?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 6/12/02 8:20 AM, "Eric Rescorla" <ekr@rtfm.com> wrote:
>> But I can do
>> this only if I can discover certs that *aren't* either in the set it hands
>> me or in my local set, and TLS says nothing about how to do this.
> Yes, because it's an edge case.

Scalability as an edge case.  Hmm.

> We barely have any PKI at all,

Actually, it would appear we barely have a bunch of different,
non-interoperable, non-scalable PKIs.  However, since I'm not a card
carrying credentialed security person, I'm probably mistaken.

> I think it's a little early to start
> worrying about cross-certification.

I think it is more than a bit late.

Rgds,
-drc


[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Fedora Users]