On Sun, Mar 16, 2008 at 10:44 PM, David Schwartz <[EMAIL PROTECTED]> wrote: > > If you can't trust the system that generates and stores your private key, > you're screwed anyway. So I don't see that this argument has any validity.
The issue is 'who is trusting what?' David's apparent statement is "the person trusting the time is the person generating the key." Michael's apparent idea is "if you're generating it and including it in the key format, then you're making an assertion which must trustable by people other than the person generating the key." -Kyle H ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
