Keith,
I've authored several papers that capture what I see as the essence of your characterizations, in a simple form. The central notion is that most of these relationships are NOT about trust, but rather about authority. if one views them in this fashion, then it becomes apparent that the entities that are authoritative for identification and authorization assertions should be CAs, and we, as individuals with many distinct identities, should expect to hold many certs, each corresponding to one identity. This is what happens in the physical world with most physical credentials: passports, frequent traveller cards, etc.
Steve
- Re: PKIs and trust Eliot Lear
- Re: PKIs and trust Leif Johansson
- Re: PKIs and trust Keith Moore
- RE: PKIs and trust Tony Hain
- Re: PKIs and trust Neal McBurnett
- Re: PKIs and trust Keith Moore
- Re: PKIs and trust Masataka Ohta
- Re: PKIs and trust Leif Johansson
- Re: PKIs and trust Valdis . Kletnieks
- Re: PKIs and trust Keith Moore
- Re: PKIs and trust Stephen Kent
- Re: PKIs and trust Masataka Ohta
- Re: PKIs and trust Stephen Kent
- Re: PKIs and trust Masataka Ohta
- Re: PKIs and trust Stephen Kent
- Re: PKIs and trust Masataka Ohta
- Re[2]: PKIs and trust Anthony G. Atkielski
- Re: PKIs and trust Franck Martin
- Re: ITU takes over? Ole J. Jacobsen
- Re: ITU takes over? Einar Stefferud
- Re[2]: ITU takes over? Anthony G. Atkielski
