[EMAIL PROTECTED] writes: >The problem is that the original design point for PKI, CRLs, etc .... >the offline & electronic guardrant is rapidly disappearing in the >always on, ubiquitous internet connected environment.
Actually I have recently run into a situation that isn't always-on, it's remote data sensing, which involves hauling a laptop out to various isolated locations and then sending the results in from a hotel room at night. I'm not exactly sure what the benefit of carrying a CRL around with you as opposed to just rejecting the data when it's submitted that evening is, you could also just carry around a list of remote sites whose keys you don't trust any more rather than a CRL. Anyway, it seems like a lot of effort to be maitaining a whole PKI model just for special-case situations like this. Peter. _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
