--------
In message <[email protected]>, John-Mark Gurney writes:
>IMO, all security needs to be node-to-node.
There's nothing "IMO" about that.
The end-to-end principle became a bed-rock foundation of all rational
networking with "End to End Arguments in System Design" in 1981.
http://web.mit.edu/Saltzer/www/publications/endtoend/endtoend.pdf
The only realistic way for the FreeBSD project to implement end-to-end
trust, is HTTPS with a self-signed cert, distributed and verified
using the projects PGP-trust-mesh and strong social network.
Anything else is just pretend-security today.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
[email protected] | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
_______________________________________________
[email protected] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "[email protected]"
