Ian G wrote: > Indeed. Establish facts, and build on them. Sadly, > we have very little experience of signing weapons > being used under fire. Things like the PGP family's > fairly sophisticated web of trust have not really ever > been attacked, and neither has my own contract > signing technology.
Ummm the PGP web of trust is only as sophisticated as the person using it, I have seen a varying degree of "trust" placed in it simply because there is no strict guidelines on usage/what the hell a signature means. I'd say the reason it hasn't been attacked is due to the potential low yield, after all most people using PGP are early adopters/tech heads which are likely to be a little smarter then the average user, and so the yield would be minimal due to common sense of the demographic rather then sophistication of the technology. -- Best regards, Duane http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! http://e164.org - Using Enum.164 to interconnect asterisk servers "In the long run the pessimist may be proved right, but the optimist has a better time on the trip." _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
