On Thu, Jan 26, 2012 at 6:15 PM, Ralph Holz <h...@net.in.tum.de> wrote: > Hi, > >> Let us consider a Tier 6 security regime applied to management of a CA: >> >> Separation of duties - increases the number of trusted parties >> No sequential access - increases the number of trusted parties >> No lone zone - increases the number of trusted parties. >> >> Those are all NSA/GCHQ doctrines. I am pretty sure that they >> understand security engineering at some level. > > But can they be applied to, say, current X.509 PKI? I doubt that.
Of course they were, why do you think I raised it in the first place? Separation of duties is essentially what SK and CT are providing. -- Website: http://hallambaker.com/ _______________________________________________ therightkey mailing list therightkey@ietf.org https://www.ietf.org/mailman/listinfo/therightkey
