On Fri, Feb 8, 2013 at 8:43 PM, Dave Cridland <[email protected]> wrote:
> Just a thought, but if the lookup gave you back a certificate, you'd get a > public key and a set of attributes all certified by an authority. > > Then the choice of whether to trust the data becomes a matter of delegated > trust, which we basically understand. > We do understand it, but does it scale? Ideally the data is signed by some instance when it goes into the database, and that entity is supposed to verify it. If it doesn't do that job well, nobody will trust that instance. However how do you want to maintain the state of trust in the other nodes of the distributed system? -- Tobias
