[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PGP, Inc.

To: "E. ALLEN SMITH" <[email protected]>
Subject: Re: PGP, Inc.
From: Raph Levien <[email protected]>
Date: Tue, 07 May 1996 07:46:05 -0700
CC: [email protected]
References: <[email protected]>
Sender: [email protected]

E. ALLEN SMITH wrote:
> 
>         Can one use a web-of-trust for S/MIME, for the cases when a structured
> hierarchy is exactly the _wrong_ thing to use? I'd think so, but I don't know
> anything about it.

   The S/MIME spec indicates the use of X.509v3 certificates, which, in
turn, are explicitly allowed to contain trust roots originating in the
client's local configuration. In other words, yes, the spec allows for a
Web of trust.
   The big question, of course, is how easy the key management will be
in such a case. Everything I've seen points to key management being
super-easy if you use VeriSign certs, and probably just as bad as PGP
otherwise. Unlike PGP, most e-mail clients will probably not come
configured with the capablity to sign other keys - in the X.500 world,
e-mail clients and "certification authorities" are two separate
applications.
   But it's too early to tell. There's a lot of ferment happening here.

Raph

References:
- Re: PGP, Inc.
  - From: "E. ALLEN SMITH" <[email protected]>

Prev by Date: Re: Why I Pay Too Much in Taxes
Next by Date: Re: Is the network layer geodesic?
Prev by thread: Re: PGP, Inc.
Next by thread: Re: PGP, Inc.
Index(es):
- Date
- Thread