On 17 Mar 2005, at 13:44, Olaf M. Kolkman wrote:
While an authentication chain to your compromised key exists, your
name-space is vulnerable to abuse by the malicious key holder (i.e.
the owner of the compromised key).
"owner" implies to me "rightful owner", which means this doesn't make
sense, but I'm not thinking of a good term.
But isn;'t it clear from "the malicious key holder" to which the
"i.e." refers?
No.
This language is too condensed for reliable interpretation by anyone who
hasn't participated in its writing.
Both "key holder" and "owner" suggest the rightful owner.
The vulnerability is (surely?) to abuse by anyone who has obtained
illegitimate possession of the key.
Best regards,
Niall O'Reilly
University College Dublin Computing Services
PGP key ID: AE995ED9 (see www.pgp.net)
Fingerprint: 23DC C6DE 8874 2432 2BE0 3905 7987 E48D AE99 5ED9
.
dnsop resources:_____________________________________________________
web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html
mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html
