Crypographically Strong Software Distribution HOWTO
Rich Salz
rsalz at zolera.com
Tue Jul 3 10:15:27 EDT 2001
> What this does not address is the common situation where the
> distribution gets signed by a different person each time (example:
> Apache). I've put some pretty serious thought into this problem and come
> to a few conclusions.
>
> The obvious answer is "use a role key".
All that work... when a conventional PKI will solve all the problems
you listed.
/r$
--
Zolera Systems, Securing web services (XML, SOAP, Signatures,
Encryption)
http://www.zolera.com
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list