On Wed, 5 Dec 2007 08:46:16 -0800 (PST), new_guy wrote: >Can you dismiss PKI and the benefits that OpenPGP signatures provide to your >user community? Knowing that xyz binary is signed by OpenBSD for >distribution or abc email came from an official OpenBSD source is a good >thing. Trojaned binaries and forged emails happen. PKI can help mitigate >this. The benefit of PKI is widely known and accepted and does not need to >be rehashed here. I'm surprised that OpenBSD (the most secure OS I know of) >does not use it, that's all I'm saying. I also thought there would be a real >reason for not doing so and there may in fact be and I may just be unaware >of it.
Hmm, you have a financial interest in a CA? Or you just believe you know more about PKI security than Schneier does? http://www.schneier.com/paper-pki.html Now tell us all why you would trust PKI so absolutely. Rod/ Me...a skeptic? I trust you have proof.
