I have no doubt in my mind that Commercial CAs are highly susceptible to coercing from governments
Basically the horse has bolted on that one, we need to acknowledge the threat and realise the only solution to this in situations of people vs governments is using some means other then PKI...
That's all I'm saying, basically :-).
But, assuming that Mozilla warns me when I get an email from a known recipient (with a known certificate), but with a new certificate, and I'd optionally check the fingerprint when needed, S/MIME could work, right? Or am I missing something?
husband<->wife I'd say in 99% of cases neither of them couldn't even decode rot13... They'd see garbage and think it was corruption...
hm? That's a question of UI, not security.
_______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
