continuity of identity scheme.
|
| I agree there is considerable merit to a continuity of identity
| scheme.
|
| But there are ways the idea can be improved. So let's discuss it.
|
| For starters, let me suggest that rather than having a self-signed
| certificate of the type created more-or-less
Trevor Perrin wrote:
One pragmatic issue is that it would be nice if you could form
continuity of identity bindings to existing 3rd-party-managed
identities as well as self-managed identities. If the client records an
identity as something like (CA cert, domain name), then this identity
Jerrold Leichter mentioned that:
a self-
signed cert is better than no cert at all: At least it can be used in an
SSH-like continuity of identity scheme.
I agree there is considerable merit to a continuity of identity
scheme.
But there are ways the idea can be improved. So let's discuss