On 11/26/2015 08:49 AM, Juliusz Chroboczek wrote:
Hmm. I've also setup many small PKIs and don't agree. I do think someone
could easily make all that quite usable within the home.
Have you ever walked a non-specialist through the process?
I'm not Stephen, and I don't play Stephen on teevee, but anything you
can do with pre-shared keys, you
can do with with an asymmetric keying approach too. Pre-shared keys are
pretty high touch form of enrollment,
after all. If you can get away with leap-of-faith kinds of enrollment,
it is even easier IMO because you don't have
to remember messy and/or lousy keys/passphrases:
New Thingy: "I'm blah and want to enroll! my public key is blah-blah-blah"
Enroller: "Sure!" or "Nah, you look sketchy"
Mike
_______________________________________________
homenet mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/homenet
