Bob, Yes I know, but how many of the vocal minority were pointing to the IPv4 addrss space issue as the achillies heel? Pki works if you know how to make it work. The fact that some in this forum don't know how to make it work for free does not devalue the concept. The ietf is doing a good job these days on avoiding insecure protocols. It is doing a lousy job creating secure protocols that can be used by real people. The perfect is the enemy of good security -----Original Message----- From: Bob Braden Sent: Sun Jun 08 20:09:35 2003 To: ietf@ietf.org; pbaker@verisign.com Subject: Re: Certificate / CPS issues *> From owner-ietf@ietf.org Sun Jun 8 18:27:12 2003 *> From: "Hallam-Baker, Phillip" <pbaker@verisign.com> *> To: "'ietf@ietf.org'" <ietf@ietf.org> *> Subject: Re: Certificate / CPS issues *> Date: Sun, 8 Jun 2003 18:16:32 -0700 *> MIME-Version: 1.0 *> X-AntiVirus: scanned by AMaViS 0.2.1 *> *> Lets try a thought experiment. Imagine for a moment someone came to this *> forum in 1990 proposing say lossy packet routing could never possibly work *> because nobody could rely on such a system, pointing out that the Internet *> was minute compared to the telephone system and that therefore the Internet *> could never possibly be built. Furthermore the fact that the OSI networking *> stack was poorly specified and X.500 would inevitably fail meant that the *> Internet could not possibly work. *> Actually, in 1990 a vocal set of people *were* saying exactly those things. Bob Braden