> I guess the main points here are "can you trust the CA ?" and "how do you
> definitively *know* you can trust the CA ?"
I'm a security novice, but as I have learned more, I have asked just
that question. There is no getting around the fact that at some point,
you must trust somebody or something. The point is, how much faith do
you have in any particular source of security? I can trust my own
machine, because I keep it clean and check it often, but I can't expect
anyone else to trust my machine, and I certainly don't trust anyone
else's machine, yet I use my credit card on commercial sites often. The
irresistible force of convenience has met the immovable object of
security, and the object is moving, for good or bad.
-Andy
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
