<div dir="ltr"><blockquote style="margin:0 0 0 40px;border:none;padding:0px"><div class="gmail_extra"><div class="gmail_quote">On Tue, Dec 23, 2014 at 3:15 AM, Ben Laurie <span dir="ltr"><<a href="mailto:ben@links.org" target="_blank">ben@links.org</a>></span> wrote:</div></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">On 22 December 2014 at 17:11, Ray Dillinger <<a href="mailto:bear@sonic.net">bear@sonic.net</a>> wrote:</span></blockquote></div></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">
> On 12/22/2014 05:32 AM, Ben Laurie wrote:</span></blockquote></div></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">
></span></blockquote></div></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">
>> Pinning does indeed not care who signed the certificate. However, it</span></blockquote></div></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">
>> introduces an apparently insurmountable problem: what happens when you</span></blockquote></div></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">
>> lose your key?</span></blockquote></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class="">.....</span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class="">
> lost business you incur because you failed to keep it confidential,</span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class="">
> is part of the cost of doing business.</span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class=""><br></span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div>How do I publicise that my blog has a new certificate?</div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class=""><br></span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class="">
> This kind of announcement to the attention of actual consumers</span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class="">
> rather than all behind the scenes and invisible, is how the CA</span></div></div></div><div class="gmail_extra"><div class="gmail_quote"><div><span class="">
> business should have worked from the start.</span></div></div></div></blockquote><div class="gmail_extra"><div class="gmail_quote"><div class="HOEnZb"><div class="h5"><br></div><div class="h5">A blog is an interesting case. You can publish a personal key (public half)</div><div class="h5">independent of the web site. This can add some additional measure</div><div class="h5">of credibility that you are you. In a blog footer you can link to other </div><div class="h5">blogs or other sites you trust and ask people to add your key to a keyring.<br>You can attach a new signed image or something with each post.</div><div class="h5"><br></div><div class="h5">A web site with a single key that they are not in full control of is at risk</div><div class="h5">for some class of problems that can only be addressed with additional</div><div class="h5">secured content. </div><div class="h5"><br></div><div class="h5">More than anything you can watch (and should watch) your own web site (content) and the </div><div class="h5">associated https key for changes. It also makes sense to keep a local backup of your blog and watch</div><div class="h5">for changes you do not expect.<br><br></div><div class="h5">Web hosting companies might do well to have a page of "staff public keys" that customers</div><div class="h5">should save on their key ring or in a local file same for the big sites. i.e. keys that </div><div class="h5">are locked in a vault, not on line and not hackable to be used to untangle serious FUBAR.<br>This needs a well considered process document to work but as we can see from</div><div class="h5">Sony big hacks are real and cleaning up after the attack is difficult.<br>Easy to walk down the hall but crosstown and beyond gets harder and harder.</div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div><div class="h5"><br></div></div></div>-- <br><div class="gmail_signature"><div dir="ltr"> T o m M i t c h e l l</div></div>
</div></div>