SPKI's CRC (was Re: New Policy: a Labour Party U-turn)
Carl Ellison
cme at cybercash.com
Tue, 28 Apr 1998 01:25:40 -0400
-----BEGIN PGP SIGNED MESSAGE-----
To follow up on my previous message...
SPKI includes the notion that any certificate verifier that happens to have
access to a signing key can reduce a sub-chain of certificates to the
5-tuple <self, s, d, a, v> and then sign that as a Certificate Result
Certificate. This puts it in the position of signing a key, generating a
certificate, with no interaction with the keyholder and certainly no access
to the private key.
Does the proposed UK policy make that mode of operation illegal?
- Carl
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.5.3
iQCVAwUBNUVoUxN3Wx8QwqUtAQEJDQP/WlGRA+x6iPgTlwjaQogPE1r7iT7pcCP3
KZpU5eBJk/xkMVKoJToQVZTDVA7v3euP9l96YaEv7lVQ/9j3bQlMbWpeiAa0RcKQ
b8DSqkQQIgAZCNWx4kIt983SXFL6KTzalUoScMRXSTrLxY8/0aDqne1OelrIBX8+
dULKyWNStec=
=80Of
-----END PGP SIGNATURE-----
+------------------------------------------------------------------+
|Carl M. Ellison cme@cybercash.com http://www.clark.net/pub/cme |
|CyberCash, Inc. http://www.cybercash.com/ |
|207 Grindall Street PGP 08FF BA05 599B 49D2 23C6 6FFD 36BA D342 |
|Baltimore MD 21230-4103 T:(410) 727-4288 F:(410)727-4293 |
+------------------------------------------------------------------+