[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: The GAK Momentum is Building...

Lucky Green wrote:

| On Wed, 18 Sep 1996, Steve Schear wrote:
| > It seems that in order for this to work Net consumers must be
| > convinced/coerced into accepting the GAK security features.  What if, due
| > to a grassroots uprising, Neters refuse to use products which require GAK
| > or Net services which will only operate via GAK?  Isn't there an great
| > opportunity being created for S/Wan, Apache and its ilk and third-party
| > (especially off-shore, non-COCOM, produced) security plug-ins?
| Simple. Incentivize sites/server/payment system manufacturers to require 
| certs from their users. This is already underway. See SET. Then make sure 
| that the certs/keys are GAK'ed. Yes, I know there is a difference between 
| certs and keys. Joe User doesn't. Neither does the media. It is a two step 
| process.

	The problem with GAK in financial systems is that it makes
your non-repudiation repudiable.  It also opens you to the CIA using
your bank to finance a revolution in Central America.  Think of it as
a revolutionary tax. ;)


"It is seldom that liberty of any kind is lost all at once."