foaf+ssl was: XAuth critiques
Eddy Nigg (StartCom Ltd.)
eddy_nigg at startcom.org
Tue Jun 8 21:32:24 UTC 2010
On 06/09/2010 12:07 AM, From John Kemp:
> I see only the same problem I saw (and reported to you) 2 years ago - which is that for all the cryptography involved, it still seems possible for an individual to self-assert that they have a WebID and that it is linked to some certificate and private/public key. Which is to say, why bother with all the crypto if a user can self-assert his or her WebID and FOAF file anyway?
Saw this a bit late, but apparently I'm not alone with my impression.
Regards
Signer: Eddy Nigg, COO/CTO
StartCom Ltd. <http://www.startcom.org>
XMPP: startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: Join the Revolution! <http://blog.startcom.org>
Twitter: Follow Me <http://twitter.com/eddy_nigg>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20100609/1fef152a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6846 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20100609/1fef152a/attachment.bin>
More information about the specs
mailing list