[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PGP, Inc.

To: [email protected] (E. ALLEN SMITH)
Subject: Re: PGP, Inc.
From: Adam Shostack <[email protected]>
Date: Fri, 10 May 1996 11:39:26 -0500 (EST)
Cc: [email protected], [email protected]
In-Reply-To: <[email protected]> from "E. ALLEN SMITH" at May 9, 96 11:10:00 pm
Sender: [email protected]

They claim to make an effort that the email address is unique, and
that Verisign!!'s [email protected] will only be issued once.

Adam


E. ALLEN SMITH wrote:
| 
| 
| From:	IN%"[email protected]"  9-MAY-1996 23:02:01.67
| 
| >At 19:37 5/9/96, E. ALLEN SMITH wrote:
| >>        I can see some fascinating legal questions with what, exactly, a
| >>VeriSign certificate obligates the company for. Digital signature laws should
| >>get interesting - any application of this to the Utah one?
| 
| >VeriSign is going to offer four levels of certs. The first requires only
| >uniqueness. For the other three levels, VeriSign will require more and
| >better assurances of the correctness of True Name stated on the cert. I
| >don't know what form these assurances are supposed to take.
| 
| 	The first level, in other words, is less of a certification than a PGP
| key with self-signature and signature from one other person. It doesn't have
| _any_ effort to verify that the email address stated on it is the actual email
| address of that nym. Or am I misinterpreting you?
| 	-Allen
| 


-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume

References:
- Re: PGP, Inc.
  - From: "E. ALLEN SMITH" <[email protected]>

Prev by Date: PTO_lop
Next by Date: The National Research Council Study of National...
Prev by thread: Re: PGP, Inc.
Next by thread: Re: PGP, Inc.
Index(es):
- Date
- Thread