Stephen Kent wrote:
>
> At 8:11 AM -0700 8/21/07, Frank Siebenlist wrote:
>> In our deployments, we see more and more that PKI is not the primary
>> authentication mechanism and that online-CAs are used to obtain
>> pk-credentials, which means that this pki-trust is derived from other
>> already pre-configured primary authentication mechanisms, like shared
>> secrets, username/password, kerberos, OTP, etc.
>
> I believe your experience is an accurate characterization for the grid
> computing community, but not most other communities who make use of PKI.
>
> Steve
>
Steve,
This use-case is not at all limited to the grid-community. In fact
the kx509 tool Frank mentioned wasn't originally a "grid thing".
Cheers Leif
