Announcing httpsy://, a YURL scheme
Ed Gerck
egerck at nma.com
Wed Jul 16 11:48:00 EDT 2003
"Mark S. Miller" wrote:
> >Ed Gerck wrote:
> >>[...] Spoofing and
> >> MITM become quite easy to do if you trust an introducer to tell you where to go.
>
> ... when an introducer does it, *by definition* it isn't a MITM attack.
You say that "By definition, Alice can't introduce him [Bob] to an inauthentic party,
because whoever Alice introduces him [Bob] to, that's who Alice introduced him
[Bob] to."
IF Alice is trusted by Bob to introduce ONLY authentic parties, yes. And that is the
problem.
Cheers,
Ed Gerck
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list