This approach buys a large amount of physical security and an audit trail for the process at very minimal cost. It also addresses another thorny problem: how to match the control of a corporate master certificate to corporate governance mechanisms. Board members of most corporations are poor potential custodians of cryptographic material. Any password sharing system runs the risk of what to do if the secret holders are all fired. Banks, on the other hand, are used to dealing with situations like changing access controls after a major management shakeup.
Arnold Reinhold
--------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]
