Skip to Content.
Sympa Menu

cacert-policy - Re: [CAcert-Policy] CPS bugs. Vote please. Colosing date of votes21 October 12pm UTC

Subject: Policy-Discussion

List archive

Re: [CAcert-Policy] CPS bugs. Vote please. Colosing date of votes21 October 12pm UTC


Chronological Thread 
  • From: "Peter Williams" <home_pw AT msn.com>
  • To: "'Policy-Discussion'" <cacert-policy AT lists.cacert.org>
  • Subject: Re: [CAcert-Policy] CPS bugs. Vote please. Colosing date of votes21 October 12pm UTC
  • Date: Sat, 18 Oct 2008 19:58:17 -0700
  • List-archive: <https://lists.cacert.org/cgi-bin/mailman/private/cacert-policy>
  • List-id: Policy-Discussion <cacert-policy.lists.cacert.org>

 

> If you are interesting in  a somewhat overly-intellectualized

> consideration of validity, in a post-PKI era sphere, consider reading

> http://yorkporc.spaces.live.com/blog/cns!5061D4609325B60!317.entry

 

 

Which says, amongst other gems, "When I wrote my PhD dissertation on

validation..."  just by way of a warning to us plebians :)

 

 

Yes; you mere pleb. But beware. The missive later carefully discloses that pleb I am, still - since I failed the oral exam.... Didn’t only fail, it was a case of throw the damn dissertation back at me as heretical, and don’t come back in these hallowed halls till you repent and sayeth only the approved things about PKI (like its world is as flat...as a dutiful marine’s haircut).

 

 

Hmmm... your description of validating authorities is interesting.

 

It seems to me that this would apply even to a software agent such

as a browser that took over most of the relying party

responsibilitie by dint of its display choices, and its verification

& validation activities.  E.g., Firefox as a Validattion Authority.

 

Iang

 

Absolutely. Cert path process itself merely the “standardized” component of validity checking. They term  following that algorithm ”processing” - to distinguish its procedures from CPS-specific validity procedures.

 

And, then, what was the first OpenID provider ? … a firefox plugin, enforcing a validity model in the midst of an sso handoff between two server-side sites, over two backtoback (SSL) channels mediated by the browser/plugin.

 

A new world following on from pure PKI is emerging, nicely.

 

The CACert community would easily add OpenId to its repertoire.

 

_______________________________________________

Have you passed the Assurer Challenge yet?

http://wiki.cacert.org/wiki/AssurerChallenge

 

CAcert-Policy mailing list

CAcert-Policy AT lists.cacerttort

https://lists.cacert.org/cgi-bin/mailman/listinfo/cacert-policy




Archive powered by MHonArc 2.6.16.

Top of Page