Can we copy trust?
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Wed Jun 4 02:50:50 EDT 2008
[Moderator's note: I'm letting just this one through, because I think
Peter's point bears repeating. --Perry]
"mheyman at gmail.com" <mheyman at gmail.com> writes:
>IT departments put corporate trusted CA certificates in employees computers.
>The US DoD puts their trusted root certificates in DoD computers. All these
>actions copy trust with high fidelity.
They don't copy any trust at all, they copy a (usually expensive)
cryptographic cookie that turns off browser warning messages.
(They do copy the cookies with high fidelity though, if one bit is corrupted
then the cookie becomes invalid).
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list