From: "Devon H. O'Dell" <devon.odell@gmail.com>
To: Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net>
Subject: Re: [9fans] offered without comment or judgement
Date: Tue, 29 Jun 2010 13:27:01 -0400 [thread overview]
Message-ID: <AANLkTinTvk4aF-n5BWTJw-7D7lKXhY3708KFvsqcPpKC@mail.gmail.com> (raw)
In-Reply-To: <4C2A29B0.7000501@authentrus.com>
2010/6/29 Wes Kussmaul <wes@authentrus.com>:
> Stanley Lieber wrote:
>>
>> Anywhere legitimate identification is used, legitimate identification can
>> be purchased.
>
> There are imperfect but very good ways to protect against that
> vulnerability. They vary with the needs (and budgets) of relying parties.
I'm pretty sure you can't solve the problem. At the end of the day, it
boils down to client-side security and what a person is willing to
defend with their life. It's perfectly feasible to assume that
identity information in a PKI world can be coerced and stolen as
easily as physical identity information such as drivers licenses and
social security cards. The security always breaks down at the personal
level, and most private individuals aren't willing to die to protect
this information.
But you can do at least as good as these forms of ID. PKI requires
knowledge of some sort of passkey. (I just worry about identification
for people who are not smart enough to pick a good key. Which,
unfortunately, is also most people.
--dho
next prev parent reply other threads:[~2010-06-29 17:27 UTC|newest]
Thread overview: 25+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-06-28 22:32 ron minnich
2010-06-28 23:10 ` Ethan Grammatikidis
2010-06-29 2:28 ` Wes Kussmaul
2010-06-29 2:46 ` Stanley Lieber
2010-06-29 17:13 ` Wes Kussmaul
2010-06-29 17:27 ` Devon H. O'Dell [this message]
2010-06-29 18:30 ` Steve Simon
2010-06-29 18:41 ` Devon H. O'Dell
2010-06-29 18:57 ` erik quanstrom
2010-06-29 19:13 ` Devon H. O'Dell
2010-06-29 19:32 ` erik quanstrom
2010-06-29 20:00 ` Devon H. O'Dell
2010-06-30 11:28 ` erik quanstrom
2010-06-30 15:22 ` Wes Kussmaul
2010-06-30 16:22 ` Devon H. O'Dell
2010-06-29 20:09 ` Wes Kussmaul
2010-06-29 21:34 ` Steve Simon
2010-06-29 19:19 ` Wes Kussmaul
2010-06-29 3:46 ` erik quanstrom
2010-06-29 8:07 ` Akshat Kumar
2010-06-29 9:14 ` hiro
2010-06-29 9:17 ` erik quanstrom
2010-06-29 19:59 ` ron minnich
2010-06-29 13:43 ` Gabriel Díaz
2010-06-29 16:54 ` hiro
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=AANLkTinTvk4aF-n5BWTJw-7D7lKXhY3708KFvsqcPpKC@mail.gmail.com \
--to=devon.odell@gmail.com \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).