On 2013-10-11, at 07:03, Tony Naggs wrote:
> On 10 October 2013 22:31, John Gilmore wrote:
>>> Does PGP have any particular support for key signing parties built in or is
>>> this just something that has grown up as a practice of use?
>>
>> It's just a practice. I agree that building a small
On 2013-09-09, at 12:04, "Salz, Rich" wrote:
> ➢ then maybe it's not such a "silly accusation" to think that root CAs are
> routinely distributed to multinational secret
> ➢ services to perform MITM session decryption on any form of communication
> that derives its security from the CA PKI.
On 2013-09-10, at 17:35, Ben Laurie wrote:
> On 10 September 2013 22:04, Joe Abley wrote:
>
>> Suppose Mallory has access to the private keys of CAs which are in "the"
>> browser list or otherwise widely-trusted.
>>
>> An on-path attack between Alice
