On Fri Aug 22 17:32:51 2008, Jonathan Schleifer wrote:
Dave Cridland <[EMAIL PROTECTED]> wrote:
> Well, what makes sense to me is to have X.509 and GPG/PGP. I'd
lean
> toward X.509 as MTI, and GPGPGP as a strongly-worded-MAY. Both
these
> are supported within TLS, as I udnerstand things (which is, of
> course waaaay less than some here).
But then we won't have something like SAS, which is absolutely
mandatory if we want it to be Average Joe compatible ;).
Average Joe compatible is, I suspect, using leap-of-faith, but
anyway, yes, we absolutely can have a number of verification options,
including, as I said in my previous message, something "which could
look very, very like the SAS".
Dave.
--
Dave Cridland - mailto:[EMAIL PROTECTED] - xmpp:[EMAIL PROTECTED]
- acap://acap.dave.cridland.net/byowner/user/dwd/bookmarks/
- http://dave.cridland.net/
Infotrope Polymer - ACAP, IMAP, ESMTP, and Lemonade
