In message <alpine.LFD.1.10.0906022034140.22834@xxxxxxxxxxxxxxxxxxxx>, Paul Wou ters writes: > On Wed, 3 Jun 2009, Masataka Ohta wrote: > > > You can, for example, bribe a personnel or two, against which there > > is no cryptographical protection, which means PKI is weakly secure. > > You have never heard of a Hardware Security Module? HSM doesn't stop the wrong data being signed. It just stops it being signed on machines other that the designated servers. Mark > Paul > _______________________________________________ > Ietf mailing list > Ietf@xxxxxxxx > https://www.ietf.org/mailman/listinfo/ietf -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka@xxxxxxx _______________________________________________ Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf