On 06/09/2010 12:07 AM, From John Kemp:
I see only the same problem I saw (and reported to you) 2 years ago - which is that for all the cryptography involved, it still seems possible for an individual to self-assert that they have a WebID and that it is linked to some certificate and private/public key. Which is to say, why bother with all the crypto if a user can self-assert his or her WebID and FOAF file anyway?
Saw this a bit late, but apparently I'm not alone with my impression.
Regards
Signer: Eddy Nigg, COO/CTO
StartCom Ltd. <http://www.startcom.org>
XMPP: [email protected] <xmpp:[email protected]>
Blog: Join the Revolution! <http://blog.startcom.org>
Twitter: Follow Me <http://twitter.com/eddy_nigg>
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ specs mailing list [email protected] http://lists.openid.net/mailman/listinfo/openid-specs
