Public Keys and the Web Page.
Ian G Batten
I.G.Batten at ftel.co.uk
Mon, 21 Jun 1999 13:26:41 +0100 (BST)
This is a multi-part message in MIME format...
------------=_929967995-26989-0
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Content-Md5: sTlpdNWIlVQYl+tIVwryyQ==
You write:
> You are right, much is being trusted in the assumption that a web page
> belongs to who it seems to. I guess that we should be surprised at how w=
ell
> the link works in practice for 99.9.....% of web pages.
That's because there's so little at stake. Were there to be financial
mileage in the subversion of a web page, we'd see the problem rather
more. Recall the bloke that redirected one of the registries a while
ago?
Sure, the DNS is more secure than it was, but plenty of people are still
running old servers. All those tricks with additional information still
work, to an extent.
> at the moment at least, pretty safe in practice. Safe, that is, in the
> sense that, of all the keys that now exist on all web pages, only a minute
> proportion of them have been subverted.
Safe, that is, in the sense that, of all the keys that now exist on all
web pages, only a minute proportion of them have the slightest financial
value.
ian
>
------------=_929967995-26989-0
Content-Type: application/pgp-signature
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
Content-Description: PGP Information
-----BEGIN PGP MESSAGE-----
Version: PGPfreeware 5.0i for non-commercial use
MessageID: WVWlDL80Fg8O/K/I84AIiNJneSQNnXuz
iQB1AwUBN24ve8oy0yij3IvtAQGqkwMA0He20nIDRxNH8GINrqFTc36knrYOCLmw
kuhjrKiNu8jdV+RJ5ddnuHb2YWeH6d3+ymdbdSFqaxq5vBan1+Mx9z5vplfGGPF1
3QFEhDZr+vugZlaLWZfA52EklO2i8upQ
=SvN9
-----END PGP MESSAGE-----
------------=_929967995-26989-0--