Can we copy trust?

Peter Gutmann pgut001 at
Wed Jun 4 02:50:50 EDT 2008

[Moderator's note: I'm letting just this one through, because I think
Peter's point bears repeating. --Perry]

"mheyman at" <mheyman at> writes:

>IT departments put corporate trusted CA certificates in employees computers.
>The US DoD puts their trusted root certificates in DoD computers. All these
>actions copy trust with high fidelity.

They don't copy any trust at all, they copy a (usually expensive)
cryptographic cookie that turns off browser warning messages.

(They do copy the cookies with high fidelity though, if one bit is corrupted
then the cookie becomes invalid).


The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at

More information about the cryptography mailing list