On Mon, 05 Nov 2001 19:12:13 GMT, Robert Relyea <[EMAIL PROTECTED]> allegedly wrote:
> I wouldn't expect mom and pop to use it, but then I wouldn't expect mom > and pop to understand what PEM format is, or how and why they would > want to export it to their website. OK, I hear what you're saying... but what about import. If I publish my certificate in this format, I'd like anyone to be able to import this and send me an encrypted message. This could be important in a business scenario where our customers/clients aren't always technically minded, but want to send me an encrypted mail (after all, I'm always harping on about it!) > I think the goal should be that the > expert users can accomplish the things they need but concentrate on > those issues that prevent the more naive users from safely using this > feature. I don't think that the export of a person's personal certificate could be considered a security risk. However, I can see that you wouldn't want to overload the user with technical issues. But the fact is that IE users have this feature already, and I think it's one of the good ones. :) In fact it's probably better if the export defaulted to just the X.509 certificate, and not the private key - that would be the "safe" option. - Dave.
