openPGP vs x509
Mark H. Wood
mwood at IUPUI.Edu
Wed Apr 7 19:10:06 CEST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
You're asking the wrong list. The necessary work is all in the browsers.
You need to add a different type of certificate evaluation to each
browser, together with a new user interface to control it, one which will
be somewhat more complex than the existing "I trust this certificate
implicitly to certify any web page from whatever domain it says it's for"
UI. There's no way to express user-specified trust levels in existing
browsers.
BTW, certificates can be had for free, but trust is *always* one of the
costliest things you can desire.
- --
Mark H. Wood, Lead System Programmer mwood at IUPUI.Edu
Open-source executable: $0.00. Source: $0.00 Control: priceless!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: pgpenvelope 2.10.2 - http://pgpenvelope.sourceforge.net/
iD8DBQFAdDX3s/NR4JuTKG8RAhsWAJ9THW/G+jqKAk9LlOJj1mpmuofvBACdHhUa
IbDHYBoeztnxxW0XPk9/LJA=
=o8lS
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list