To:
Eric Rescorla <ekr@rtfm.com>
cc:
openssl-users@openssl.org, ietf <ietf@ietf.org>, <isdf@isoc.org>, Key Distribution <keydist@cafax.se>
From:
"RL 'Bob' Morgan" <rlmorgan@washington.edu>
Date:
Wed, 12 Jun 2002 09:50:49 -0700 (PDT)
In-Reply-To:
<kjit4ole1o.fsf@romeo.rtfm.com>
Sender:
owner-keydist@cafax.se
Subject:
Re: Global PKI on DNS?
On 12 Jun 2002, Eric Rescorla wrote: > Yes, because it's an edge case. So: "scalability is an edge case". I will restrain myself from commenting further on this point. > We barely have any PKI at all, I think it's a little early to start > worrying about cross-certification. I'm sure you're aware that many folks, including Your Federal Government, are designing and building systems that rely on cross-certification even as we type. You may think these are doomed to failure (I have my doubts myself) but you can't deny that they have requirements to meet. - RL "Bob"