Hi,
The list sounds about right. CA transparency and Sovereign Keys have a
lot in common. One thing that I was wondering is why Sovereign Keys does
not use Merkle hash chains; my guess so far was performance.
And there's some partially-connected things in the works:
- Key Pinning in HTTP working it's way through the websec working
group: http://tools.ietf.org/html/draft-ietf-websec-key-pinning-01
- Key Pinning in TLS by moxie: https://github.com/moxie0/Convergence/wiki/TACK
- DANE for cert assertions via DNSSEC
Not quite the same as it has a different purpose, but may I also add our
own Crossbear: https://pki.net.in.tum.de/node/4. The purpose of the tool
is to trace the MitM. It has its own tracking infrastructure, but also
makes use of Convergence.
Ralph
_______________________________________________
therightkey mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/therightkey
