[EMAIL PROTECTED] wrote:
you could use a realtime, certificateless, onfile public key retrieval from trusted DNS infrastructure ... for using in establishing encrypted SSL session (instead of obtaining server public key from a certificate).
If we wanted to boil the sea, we could do that too :-) As far as I can see, this idea requires both widely-deployed DNSSec and a replacement of the entire cert mechanism.
Gerv _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
