-- James A. Donald > > nor is PKI useful in solving phishing. > > > > PKI is a solution that has been tried and has > > failed. It has become an obstacle, as commercial > > interests actively block alternatives that do not > > involve a small number of centralized authorities > > with a special privilege that enables them to > > intrude between client and server and charge the > > server.
Hallam-Baker, Phillip wrote: > On the contrary, PKI is the basis of the security > infrastructure that so far has provided the greatest > defense against Internet crime - SSL. Most of the time that I login, or pay by credit card, or some such, I am bounced to some weird URL that has no easily provable connection to business I am trying to interact with, which means that PKI is in practice merely an exorbitantly slow and inefficient Diffie-Hellman key-exchange. --digsig James A. Donald 6YeGpsZR+nOTh/cGwvITnSR3TdzclVpR0+pr3YYQdkG ERRvvxIr3Rz1ZnlX/LG8m/wkPWR/RhhqcWfDRyI1 403xuw3aJ0JGZbaY+1qh/4rydpyimpbcM8a2SNF9D _______________________________________________ specs mailing list specs@openid.net http://openid.net/mailman/listinfo/specs