[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [ga] Registration process suggestion



At 10:09 AM 2/14/2000 -0800, Roeland M.J. Meyer wrote:
> > I did not say that no mechanisms or services existed.  I said there was no
> > large-scale USE.
>
>Without marketing/demographics data, which neither of us are either privy to
>(or are free to publish) your statement is unsupported. I still maintain
>that it is false (understood - such statement is equally unsupported).
>However, you might try Forrester's.

The nice things about using the term "large-scale" in the context of the 
Internet is that measuring achieving it is usually obvious to most any 
observer.  Simple questions like "is there any indication that average, 
non-technical users employ it regularly or easily -- and particularly 
between people in different organizations?" permit gauging the scale of use.

In the case of Internet authentication obviously has not achieved truly 
wide-scale deployment and is, most certainly, not easy to use, except with 
quite a bit of administrative hand-holding for non-technical users.


>I agree with the non-email requirement (email vs persona). It is also a
>problem with PGP. PGP only secures the individual message. With a PKI,
>it -might- also provide verification of the end-points of a communique.

The trust models, security boundaries, etc. are pretty much the same for 
PGP and S/MIME.  Suggesting that PGP does not have a "public-key 
infrastructure" is a bit strange, and even stranger to suggest that adding 
one somehow expands the scope of the objects being protected.

To the extent you mean that employing a third-party key certification 
structure is significant, yes.  It permits making stronger statements about 
the protection of the data, relative to the third-party authority.  But it 
does not change the scope of what is being protected.


> > > > For that matter, there is no large scale use of open, encrypton-based
> > > > authentication services.
> > >This is true, iff you emphasize the term "open".
> > That is exactly the point.  ICANN participation is open.
>
>... apples and oranges, Dave. ICANN is not a technology and authentication
>services are not a would-be governance organization.

The reference to ICANN being open means that the security technology must 
interwork among a very diverse and independent set of people.

d/

=-=-=-=-=
Dave Crocker  <dcrocker@brandenburg.com>
Brandenburg Consulting  <www.brandenburg.com>
Tel: +1.408.246.8253,  Fax: +1.408.273.6464
675 Spruce Drive,  Sunnyvale, CA 94086 USA

Gong Xi Fa Cai   /  Selamat Tahun Baru Cina

--
This message was passed to you via the ga@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga" in the body of the message).
Archives at http://www.dnso.org/archives.html