On Thu, 18 Apr 2002, William Ahern wrote: > On Thu, Apr 18, 2002 at 10:51:05PM +1200, Nick Johnson wrote: > > Pondering the whole public-key integrity & man in the middle attack problem, > > a thought occurred to me:- > > It should be possible to devise a peer-based system similar to freenet for > > the distribution of public-key data in an attack resistant manner. > <snip> > > such a thing is on my road-map. anonnet will eventually use it for > a public-key network. that's why i'm paying for the domains > authnet.org and certnet.org ;)
I am interested in a similar thing. I would like to have a system which will allow public keys to verified against several different criteria. 1) That a public key was verified by an actual human an not just created automatically. By this I mean that after a public key is generated an actual human went though a fairly involved process to verify it. This will involve a variety of tasks which will be very difficult for a computer to automate. Once the human complete the process the verifier(s) will sign the public key. The primary motivation behind this is to allow anyone to post messages to a group but prevent spam by disallow certain public keys of known spammers. This type of list will be community maintained by some sort of voting system. The voters must also have verified keys and may vote on other voters to prevent abusive voters. The real challenge is doing this in such a way where no particular node can be trusted and maintain the anonymity of the verifyee. That is it should be imposable for the verifier to know the location of the verifyee. for the verifier. 2) Being able to securely attach email address and other forms of out-of-band identification information to a public key. Obviously the reason for doing this is to make a anonymous public-key not so anonymous. This should be easier to do since the only real challenge is doing so where no one particular node can be trusted. Maintaining anonymity in this case is obviously not important. Do you have any ideas? --- http://kevin.atkinson.dhs.org _______________________________________________ freenet-tech mailing list [EMAIL PROTECTED] http://lists.freenetproject.org/mailman/listinfo/tech
