>>> As security engineers, our role is to (a) reduce the number of >>> entities we trust; (b) reduce the extent to which we trust the >>> remaining trusted entities; and (c) determine the trustworthiness of >>> trusted entities. >> >> Really? > > Yep.
+1 One of the better definitions I've heard. I would question whether (c) is even in scope; seems like a relying party function. _______________________________________________ therightkey mailing list therightkey@ietf.org https://www.ietf.org/mailman/listinfo/therightkey
