[OpenID] Announcing OpenID Authentication 2.0 - Implementor'sDraft 11
James A. Donald
jamesd at echeque.com
Wed Jan 24 03:22:33 UTC 2007
--
James A. Donald
> > nor is PKI useful in solving phishing.
> >
> > PKI is a solution that has been tried and has
> > failed. It has become an obstacle, as commercial
> > interests actively block alternatives that do not
> > involve a small number of centralized authorities
> > with a special privilege that enables them to
> > intrude between client and server and charge the
> > server.
Hallam-Baker, Phillip wrote:
> On the contrary, PKI is the basis of the security
> infrastructure that so far has provided the greatest
> defense against Internet crime - SSL.
Most of the time that I login, or pay by credit card, or
some such, I am bounced to some weird URL that has no
easily provable connection to business I am trying to
interact with, which means that PKI is in practice
merely an exorbitantly slow and inefficient
Diffie-Hellman key-exchange.
--digsig
James A. Donald
6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG
ERRvvxIr3Rz1ZnlX/LG8m/wkPWR/RhhqcWfDRyI1
403xuw3aJ0JGZbaY+1qh/4rydpyimpbcM8a2SNF9D
More information about the general
mailing list