One of the less-discussed risks of widespread surveillance is
not just the abuse or misuse of intercepted content and meta-
data by the government, but its accidental disclosure. As
more and more private data gets collected, and as it sits
around for longer and longer, it becomes inevitable that
Nicolas Williams [EMAIL PROTECTED] writes:
Advice on how to generate self-signed certs for this purpose would be
good for an FYI, or even a BCP. I don't think we need extensions to any
protocols that support PKI to support bare PK (though some protocols
have both, e.g., IKE).
It's been around