Certificates Useful for Electronic Commerce?

Nicholas Bohm nbohm at ernest.net
Fri, 06 Aug 1999 17:56:32 +0100 

At 05:41 PM 8/6/1999 +0100, Brian Gladman wrote:
>From: Ben Laurie <ben@algroup.co.uk>
>To: <ukcrypto@maillist.ox.ac.uk>
>Sent: 06 August 1999 16:26 PM
>Subject: Re: The obscurity of clause 7 of the draft Bill
>
>
>> Nicholas Bohm wrote:
>> > I happen to doubt the significance of certificates
>> > for electronic commerce;
>>
>> It would be interesting to hear why (and what you think can replace
>> them), but not in this thread.
>
>I think the real issue here is the definition of a 'certificate'.  If it is
>an identity certificate - one that is trying to link a person's identity to
>a key in some way - then I believe Nicholas is entirely right to doubt their
>value.  And, since this seems to be the sort of certificate the Government
>is aiming at, this does lead to a concern that the parts of the Bill dealing
>with signatures will do very little for electronic commerce.
>
>If however, a certificate confers some form of permission on a key (and/or a
>key holder) then I am less doubtful and I do believe that certificates will
>have uses.  However, this type of certificate will typically be issued and
>verified within a context set by multiple closed two party relationships
>where contracts can be used to set the conditions of use and hence avoid the
>difficult issues of open third party liability.
>
>And, of course, we do not need any legislation to validate the use of
>certificates in such situations.
>
>I can envisage potential applications for open certificates but the issues
>involved in their use seem most unlikely to be resolved by the proposals set
>out in the Electronic Communications Bill.

I agree with Brian's analysis, and we shall have to wait and see how
certificates come to be used.

As to what can replace them, my comment is that I'm very happy with today's
electronic commerce, in which nobody wants me to have any certificates, and
I am unaware of relying on anybody else's.  So there doesn't seem to be
anything to replace yet.

Regards,

Nicholas Bohm

Salkyns, Great Canfield,
Takeley, Bishop's Stortford CM22 6SX, UK

Phone		01279 871272	(+44 1279 871272)
Fax		01279 870215	(+44 1279 870215)
Mobile   	0860 636749  	(+44 860 636749)

PGP RSA 1024 bit public key ID: 0x08340015.  Fingerprint:
9E 15 FB 2A 54 96 24 37  98 A2 E0 D1 34 13 48 07
PGP DSS/DH 1024/3072 public key ID: 0x899DD7FF.  Fingerprint:
5248 1320 B42E 84FC 1E8B  A9E6 0912 AE66 899D D7FF