<<<
Chronological Index
>>> <<<
Thread Index
>>>
Re: [ga] Domain Transfers
On Sat, Dec 15, 2001 at 12:28:53PM -0500, Sandy Harris wrote:
>
> A fairly obvious and strightforward one would be to require PGP-signing of
> all transactions.
A typical answer from a techie. :-)
You have invested the time and energy necessary to learn how to use PGP;
most other humans have not. There are subtle pitfalls in using PGP (and
indeed, any PKI so far in deployment) that are traps for the unwary, and
it actually takes a non-trivial amount of technical sophistication to
understand this. All things considered, the time and effort coming up
to speed on PGP is in fact substantial -- on the order of person-days,
at least. Summing that over all domain holders, the cost of your
proposed solution is prohibitive.
PGP has never made it as a *mainstream* solution for anything, and
probably never will -- it remains a tool for techies. Until there
is a PKI that operates well on a global basis, no PKI-based solution
will really be useful.
And even more -- the big problems are not the technology; the big
problems are the human problems of identification in the first place.
This all interacts with privacy and other concerns; it will be a long
time before it is all sorted out.
--
Kent Crispin "Be good, and you will be
kent@songbird.com lonesome." -- Mark Twain
--
This message was passed to you via the ga-full@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga-full" in the body of the message).
Archives at http://www.dnso.org/archives.html
<<<
Chronological Index
>>> <<<
Thread Index
>>>
|