... I think what's being referred to in most cases when the term PKI is used isn't any kind of infrastructure but a utopia in which all security problems are ...
Peter Gutmann
pgut001@...
Jun 6, 2001 5:42 pm
945
... Hash: SHA1 ... I like the term Trust Management, and liked it when [BFL] came up with it, but I have had a problem with the use of the word "Trust" for...
Carl Ellison
cme@...
Jun 7, 2001 11:52 am
946
... Hash: SHA1 ... Liability management is another good thing and I don't see enough written about it. I don't think we address it, however. ... Amen,...
Carl Ellison
cme@...
Jun 7, 2001 11:53 am
947
... Hash: SHA1 ... Peter, that's a great thought. When you remember what that paper is, can you send the pointer to the list? - Carl ... Version: PGP 6.5.2 ...
... Hash: SHA1 ... I like your definition of infrastructure, here. That's one that I use to describe my own activities. I especially like your use of...
Carl Ellison
cme@...
Jun 7, 2001 12:13 pm
951
... Hash: SHA1 ... Ah yes, Directory. This is X.500 in sheeps clothing. Or maybe the Devil, in some sweet disguise. I have a great sermon by a retired bishop...
Carl Ellison
cme@...
Jun 7, 2001 12:14 pm
952
Carl, Bob, and others, I too have become increasingly disappointed in the application of certificates to authentication and authorization. As Carl pointed out...
James A. Rome
jar@...
Jun 7, 2001 1:01 pm
953
... There's actually a variety of subclasses here, from my crypto tutorial: Types of trust Blind trust Sometimes the only option, eg emergencies Swift trust ...
Peter Gutmann
pgut001@...
Jun 7, 2001 3:03 pm
954
... Hash: SHA1 ... Actually, that third one might better be called "psychotic trust", now that I think about it. Isn't that someone's definition of a...
Carl Ellison
cme@...
Jun 7, 2001 3:57 pm
955
James, What is the cause of the disappointment? That DOE has not attempted to apply certificates to authorization, or that it has made a serious, thoughtful...
David P. Kemp
dpkemp@...
Jun 7, 2001 4:07 pm
956
Let's assume that I use out of band information. The problem is that I in the Collaborative Domain (CD) have certain policies that I want to enforce, and the...
James A. Rome
jar@...
Jun 7, 2001 5:12 pm
957
... This suggests that "Capability Management System" or Infrastructure is also an accurate description for that which SPKI supports. Perhaps this is why ...
Tony Bartoletti
azb@...
Jun 7, 2001 6:18 pm
958
... Peter may be thinking about a discussion on the E Language list. Some of the references are: ...
Bill Frantz
frantz@...
Jun 7, 2001 6:40 pm
959
... Hash: SHA1 Jim, this is a great discussion. As usual, Dave is almost 100% on the money. The one place I disagree with him is at the end of his message. I...
Carl Ellison
cme@...
Jun 8, 2001 12:57 am
960
Since I am in a non-defense lab, we do not do (much) classified work, and do not have secure computers with MAC. :-(( I have often longed for something like a...
James A. Rome
jar@...
Jun 8, 2001 1:24 pm
961
... Hash: SHA1 ... You're right, it's possible to put great enforcement into the programming language, if you have an interpreted language and it's designed...
Carl Ellison
cme@...
Jun 8, 2001 2:22 pm
962
... [snip] ... I do agree. The point was whether "to trust" = "to rely upon". It tends to be so in the hypothetical, but although you might not trust that...
Tony Bartoletti
azb@...
Jun 8, 2001 6:08 pm
963
... [...] ... [...] ... i guess we could choose to either 1) continue debating and try to reach a closed-group consensus on the definitions of these...
Pornthep Narula
tep@...
Jun 8, 2001 7:15 pm
964
... Aso, Neville Holmes recently brought up terminology standards issue on his 'The Profession' column in the IEEE Computer May 2001 issue titled 'The Great ...
Pornthep Narula
tep@...
Jun 8, 2001 10:28 pm
965
Pornthep, First, thanks for the dictionary link! Some comments below. ... It is always a bit of both. ... The problem with most dictionaries is that they are...
Tony Bartoletti
azb@...
Jun 8, 2001 10:47 pm
966
Well, then this suggests a time element (as in net present value of the negative future harm.) I'm not actually going anywhere with this thought . .. but it...
Martin Smith
mfsmith@...
Jun 9, 2001 12:56 am
967
... Good point. We often toss probabilities around in formulas, and don't include at least one of "per unit time", or "per event, per transaction", or some...
Tony Bartoletti
azb@...
Jun 9, 2001 1:36 am
968
... Finance, boys and girls. Finance. ... Cheers, RAH (Carl says this all the time. It's true. :-)) -- ... R. A. Hettinga <mailto: rah@...> The Internet...
R. A. Hettinga
rah@...
Jun 9, 2001 1:51 am
969
... I think the defining component of psychosis is a distorted perception of reality. If I'm psychotic, I might honestly believe that I am Elvis Presley and ...
Niels Möller
nisse@...
Jun 9, 2001 1:35 pm
970
... Hi, There is a project called Akenti, which is ... calling trusted assistant Mr Google ... ah, here it is: http://www-itg.lbl.gov/security/Akenti/ <blurb>...
Ng Pheng Siong
ngps@...
Jun 9, 2001 4:26 pm
971
I am well aware of Akenti. The main problem it solves is stakeholder's rights, but aside from allowing or disallowing access to a resource, Akenti has no...
James A. Rome
jar@...
Jun 9, 2001 5:16 pm
972
... my pleasure! ... unfortunately, we (in general) seems to have been doing much of the former and too little of the latter.... ... i agree that traditional...
Pornthep Narula
tep@...
Jun 10, 2001 11:57 pm
973
... I've found the paper, it's "Why Isn't Trust Transitive" by Bruce Christianson and William Harbison, proceedings of the (first) Security Protocols Workshop,...
